One of the biggest problems in security that comes up over and over again is trying to demonstrate the value of what we do. After all, to the majority of the people, we’re just a cost center. As the old saying goes, they’re giving us money… …so that nothing bad happens. As I’ve alluded to […]
Don’t be the hungry security puppy
Have you ever been really focused on something, and no matter what you did, you didn’t seem to get any closer to it? I mean, damn it! It’s right…there. But I can’t get it. I mean, I want it. I know I want it, but…nope. Maybe if I just tried this… This scene was pretty-much […]
Gimme 3 types…gimme 3 types, mister
Whether or not you’re cutting the rug with Linda Lou or shakin’ like a leaf on a tree, one thing you need to know about requirements if you’re going to have a hope of tryin’ to prove they’re the right ones you should be including into your security program is that there’s 3 types: The […]
Discovering the secret sauce of the organizatiosaurus—can you do it?
My son is on a bit of a dinosaur kick over the last few days. First it was the Lego version of Jurassic World on Netflix, and tonight, the book he picked was an amusing story called Tyrannosaurus Drip, where a reed-eating little guy who looks somewhat like a Parasaurolophus accidentally gets raised by a […]
Are you still in the 74%?
According to some old research from Ponemon and F5 I recently rediscovered today, 74% of the respondents to a 2017 survey said that their security programs weren’t aligned with the objectives of the businesses they were trying to protect. And even today, I spoke to a very modern bank in the middle of a massive […]
