[Note that this is a slightly abbreviated version (yes, really…) of the original. The original only went to the subscribers to my daily email tips, but you can get all the goodies too if you type your email in that box. You’ll always be the first to know what’s going on, and sometimes, it might […]
Do you really want security making business decisions?
This was a topic that came up during one of today’s sessions at COSAC. Originally, it was about software developers making business decisions because they weren’t aware (or chose to ignore) key business or legal requirements when they were actually implementing the software that runs the business. Now there’s a lot of issues with this, […]
Hell, no! I don’t care about your security policies!
Ever get the feeling that this is really what your business and IT customers are saying to you whenever you’re sitting in that last-minute security review and you catch them in violation of the security policies you know have been published for at least 6 months—and which they’ve had to go through (probably mind-numbing) mandatory […]
Is it worth it?
I was recently asked when I was talking to someone about the newsletter you hear about most days whether it was really worth it or not. The reality is that I can’t answer that question for you. You have to make your own value calculation, and then you have to decide if about $3/day is […]
Wisely wielding the power of organizational mind control
Yesterday, I let you in on one of the biggest secrets of security: that the primary role you have in delivering your mission and purpose of security is creating and maintaining the organizational security policies. Today, I’m going to let you in on the biggest secret of security: You have the power to control the […]
- « Previous Page
- 1
- …
- 32
- 33
- 34
- 35
- 36
- …
- 41
- Next Page »