It’s one thing to be proud of the work you do, but it’s a whole other thing to be so in love with it that you start idolizing the work and forget… …what the work is actually for. And this goes as much for assuming people can immediately see the value of what you do […]
Cloud, schmoud…let’s quit kidding ourselves
This morning, a lovely little promo “predictions” video from FireEye popped up in my LI feed whose basic premise was this: “The job of a cybersecurity professional is getting more difficult due to the amount of cloud being used.” “Woop…woop…woop…woop” is the sound of the BS detector going off, and it’s just one of the […]
The cost of standing still
An old Chinese proverb popped up in my inbox yesterday that’s worth thinking about: “Many a false step was made by standing still.” It can apply to many different areas of your life for sure, but – unsurprisingly – what I want to talk about is in relation to your work as a security professional generally, […]
Easy security reporting recipes
When it comes to security reports, we often tend to take a page out of the book of W.C. Fields: “If you can’t dazzle them with brilliance, baffle them with bullshite.” …at least that’s how a lot of them are received by their audience, anyway. Of course, weeee don’t think they’re bullshite. They make perfect […]
Why you need to become “besties” with policy exceptions
If there’s one thing that I think causes the most conflict between security and “the business”, it’s trying to figure out how to deal with policy exceptions. Now, in some cases, organizations have this pretty well dialed out—but based on my observations, I’m not really sure they truly understand why this is the case. So […]
- « Previous Page
- 1
- …
- 17
- 18
- 19
- 20
- 21
- …
- 60
- Next Page »
