• Strategy
  • Risk
  • Governance
  • Compliance
  • SABSA®
  • Login

Archistry

exceptional performance since 2006

  • Home
  • About
  • Courses
  • Bookstore
  • Glossary
  • Contact

May 24, 2020

Getting past the possibility (or why threat-based security will get you nowhere)

Yesterday, I was re-reading the FAIR book,  Measuring and Managing Information Risk: A FAIR Approach, and something jumped out at me that I’d forgotten the first time I’d read it. The notion of getting hooked on the possibility of an event. Of course, the FAIR book poo-poos all over the qualitative risk assessment – and, […]

Article by Andrew Townley / Archistry Daily / Agile Security, FAIR, Risk Assessment, Risk Management Leave a Comment

May 23, 2020

Boys, wolves and Chicken Little

Folktales and fables are ways to make sure we learn life’s essential lessons both easily and at an early age. And two of the ones that I think  are most relevant to what we do as security professionals are The Boy Who Cried Wolf and Chicken Little. Quick refreshers might be in order, so here […]

Article by Andrew Townley / Archistry Daily / Agile Security, Folktales, Risk Appetite, Risk Management, Risk Tolerance, Stakeholder Credibility Leave a Comment

May 22, 2020

Staring down the red-eyed monsters

Tonight I watched my son have a white-hot meltdown. It’s never happened before, but then again, he’s never been stuck in the house with the rest of us for going on 7 weeks now either. So, I have little doubt that a lot of the frustration and fears about what’s happening came out all at […]

Article by Andrew Townley / Archistry Daily / Agile Security, Fear, Risk Assessment, Security Architecture Leave a Comment

May 21, 2020

“Good math” vs. “bad math” in risk assessments

A long time ago, I heard someone say: “Lottery tickets are a tax for people who are bad at math.” Which is pretty accurate. Have I ever bought one? Well, yeah—but as a conscious choice in a game of “Wow, wouldn’t it be really funny if I won $18 gazillion,” rather than, “I can’t pay […]

Article by Andrew Townley / Archistry Daily / Accuracy, Agile Security, Risk Assessments, SABSA Leave a Comment

May 20, 2020

The key to demonstrating security value

One of the toughest challenges we face as security professionals is proving the value of what we do. I mean, so many people have the attitude that basically, “We get paid when nothing happens.” And, to a point, that is true. If we’re doing our jobs correctly, then things will go smoothly. However, things going […]

Article by Andrew Townley / Archistry Daily / Agile Security, Risk Assessment, Security Architecture, Security Value Leave a Comment

  • « Previous Page
  • 1
  • 2
  • 3
  • 4
  • …
  • 54
  • Next Page »
  • Email
  • LinkedIn
  • Twitter
  • YouTube

EMAIL NEWSLETTER

Want to get DAILY email tips on how to build a more effective security program so you can prove your security investments deliver value to the business?

You can always unsubscribe at any time, and we won't sell your data to third parties.

About Us

Archistry works with you to ensure what you want to achieve actually gets done, linking strategy, risk, governance and compliance to enable sustained exceptional performance Read More…

Testimonials

Andrew is a highly skilled and experienced information systems architect and consultant, which in my view is a rare thing. He is innovative in his thinking and merits the title of 'thought leader' in his specialist domains of knowledge—in particular the management of risk. Andrew has embraced SABSA as a framework and, in doing so, has been a significant contributor to extending the SABSA body of knowledge."

— John Sherwood, Chief SABSA Architect

"Fabulous person to work with. Very engaging and insightful. Extremely good technical knowledge with ability to relate concepts together and overcome differing opinions. Makes things work."

— Kevin Howe-Patterson, Chief Architect, Nortel - Wireless Data Services

"Andrew was able to bring clarity and great depth of knowledge to the table. His breadth of thinking and understanding of the business and technical issues along with a clear and effective communication style were of great benefit in moving the process forward towards a successful conclusion."

— Doug Reynolds, Product Manager, MobileAware

"Andrew is a fabulous consultant and presenter that you simply enjoy listening to, as he manages to develop highly sophisticated subjects in very understandable way. His experience is actually surprising and his thoughts leave you without considerable arguments for any doubts in the subjects he covers."

— Biljana Cerin, Director, Information Security and Compliance

Recent Posts

  • So, what is it you’re doing every day?
  • Forging your own Security Avengers
  • The horse called Architecture is gonna race, no matter what
  • Playing well with the good little ERM children
  • Man vs. machine: where are you going to put your faith?

Looking for something else?

Archistry

Practice Areas

  • Strategy
  • Risk Management
  • Corporate Governance
  • Compliance
  • SABSA®
  • Home
  • About
  • Courses
  • Bookstore
  • Glossary
  • Contact

  • Terms of Service
  • Privacy Policy
  • Cookie Policy
  • Copyright © 2006-2020 Archistry Incorporated or its affiliates

"Archistry", the stained glass window logo, "Pragmantix" and the Pragmantix™ logo, "Archistry Execution Framework (AEF)", "Archistry Execution Framework, Cybersecurity Edition (ACS)", "The Agile Security System", "The Agile Business System", "Baseline Perspectives", "Architecture Wall" and "Archistry Execution Engine" are trademarks of Archistry Limited.