The cynical definition of a “hero” is one I remember spouting off in meetings not so many years ago. I was a bit more jaded then. Maybe I had a reason, but maybe I didn’t. Looking back on it now, I’m actually not sure. But I do remember what I said about heroes on more […]
The myth of the isolated project
I was recently reminded of a pretty pervasive problem that often sneaks in to our worlds as security. That problem is the myth of the isolated project. It often starts simply enough (and if you have kids, you should recognize these warning signs): “It’s just this one time. I won’t ask you to do this […]
The boneyard of failed architecture initiatives
One thing that often happens when people finally discover that security architecture is a whole more than the way their security infrastructure is connected is that they’re all “hot to trot” and want to stand up an enterprise security architecture program from scratch. This is excellent, and one should never underestimate the power of enthusiasm. […]
What to do when your security program has more mice than a science lab
There was a really interesting point in a Cisco survey I read over the last few days that was talking about the overall confidence levels of security leaders regarding their ability to keep their organizations safe. And, actually, it’s something I’ve also seen come up pretty regularly when I talk to security leaders, architects and […]
Do you really need another armchair quarterback?
When I was a kid, one of the few times my dad and I would actually sit together and watch TV was on Mondays during the American Football season. Neither of us were what I’d call even avid fans, but do I remember that the NFL season and harvest season in IL were more-or-less aligned, […]
