Commentary Archives | Page 2 of 5 | Chronicles of a CISO

A Few Leadership Work-From-Home Tips

Mar 13, 2020John Masserini2 CommentsCommentaryCritical_Reads, Leadership

A few tried-and-true practices to keep you productive and sane while spending an unexpected few weeks in the home office.

Tech Hiring is Badly Broken

Feb 28, 2020John MasseriniCommentaryLeadership

As a hiring manager, how does someone make a person go through three video interviews, do two coding assignments, be so impressed with the coding that they then fly the person up for in-person interviews, and only then decide the coding skills aren’t exactly what they are looking for?!?

The First Anniversary of Chronicles of a CISO

Feb 4, 2020John Masserini3 CommentsCommentaryInformation Security, Marketing

Photo by Hal Gatewood on Unsplash It’s hard to believe it’s been a year already. Twelve months ago, I took the leap and decided that it was time to start my own blog, and now, here we are celebrating the 1st anniversary. Over 110,000 visits later, I am shocked, honored, and above all, humbled that this little pet…

Identity Attack Vectors, by Haber and Rolls

Dec 23, 2019John Masserini1 CommentCommentaryIdentity, Privileged Access

Honored to have had the privilege to write the forward to the third book of Morey Haber‘s trilogy of enterprise attack vectors. This installment, written with Darran Rolls, discusses the details of identity-based attacks and how to protect against them. I’ve written frequently about the necessity of adequately managing the digital identities of our enterprise…

Few Firms Use Segmentation, Despite Security Benefits

Dec 19, 2019RSS FeedCommentary, RSSInformation Security

The move to a segmented infrastructure is not a revolutionary effort, its an evolutionary one. The slow, steady migration to segmentation is the only realistic path to success. Networking teams should take advantage of the migration to the cloud or other virtual infrastructure to move to a segmented model in a methodological way; new applications…

My Daily Cybersecurity Reading List

Jul 22, 2019John Masserini4 CommentsCommentaryCoaC, Leadership

Overwhelmingly, there is one question about cybersecurity I am asked far more than any other. What’s the best solution I’ve used? Nope. What’s my favorite conference to attend? Negative. How did I get started in Information Security? Nahh… Without question, the one thing I am asked most these days is… What do you read every…

When Security Metrics Miss The Point

May 9, 2019John Masserini2 CommentsCommentaryLeadership, Metrics

After countless years of presenting to boards, executives, and colleagues, I’ve found that I’ve developed almost a split-personality when I’m asked about what metrics to track.

Two-factor Authentication Is Not Dead

Apr 1, 2019John Masserini3 CommentsCommentaryIdentity

I’ve had just about enough of the fear mongering and lazy ‘reporting’ that’s been in the press recently around how two-factor authentication is broken. I’m not sure about you, but the way the doomsday preachers in mass media have torn apart two-factor authentication lately really has me wondering about the state of journalism anymore. I…

Free NIST CSF Maturity Tool

Jan 28, 2019John Masserini5 CommentsCommentaryLeadership, Maturity, NIST

In my previous post, ‘My Three Wishes for 2019’, I had wished that we all find a way to give back to the industry, even a little bit. In an effort to fulfill that desire, I wanted to share a simple, but effective tool I’ve used, in various forms, for many years. The NIST CSF…

My Three Wishes for 2019

Dec 31, 2018John Masserini1 CommentCommentaryDiversity, Quantum, STEM

It’s the end of the year and like all of you, my news feed has been filled with ‘Predictions for 2019’ to such a point that I basically ignore them. And while I admit that I did indeed write one of those a few years back, I’ve about had more than my fill at this…

John Masserini @John_Masserini·

4 Jun

I have personally struggled quite a bit this past week with trying to direct the anger and outrage towards making a positive change. I hope this helps those of you who share the same desires.

#Diversity #informationsecurity #CISO https://lnkd.in/eGDS8fj

Reply on Twitter 1268519344348282880 Retweet on Twitter 1268519344348282880 Like on Twitter 12685193443482828803 Twitter 1268519344348282880

John Masserini @John_Masserini·

3 Jun

Hackers Update Notorious TrickBot Malware to Evade Detection https://www.google.com/url?rct=j&sa=t&url=https%3A%2F%2Fhealthitsecurity.com%2Fnews%2Fhackers-update-notorious-trickbot-malware-to-evade-detection&ct=ga&cd=CAIyGjgyODM0YzdkZTQ5NDM0MGE6Y29tOmVuOlVT&usg=AFQjCNFCPZIkm2jZfKtpHgYaQ_Tj5CP2yA&utm_source=twitter&utm_medium=social_Twitter&utm_campaign=Twitter_Posts #coac #informationsecurity #cybersecurity

Reply on Twitter 1268318729361854471 Retweet on Twitter 1268318729361854471 Like on Twitter 1268318729361854471 Twitter 1268318729361854471

John Masserini @John_Masserini·

3 Jun

Hackers and hucksters reinvigorate ‘Anonymous’ brand https://www.google.com/url?rct=j&sa=t&url=https%3A%2F%2Fwww.itnews.com.au%2Fnews%2Fhackers-and-hucksters-reinvigorate-anonymous-brand-548891&ct=ga&cd=CAIyGjgyODM0YzdkZTQ5NDM0MGE6Y29tOmVuOlVT&usg=AFQjCNFvCiWssqCjwyklKZBK0GZ19z21Cg&utm_source=twitter&utm_medium=social_Twitter&utm_campaign=Twitter_Posts #coac #informationsecurity #cybersecurity

Reply on Twitter 1268304320451219458 Retweet on Twitter 1268304320451219458 Like on Twitter 1268304320451219458 Twitter 1268304320451219458

John Masserini @John_Masserini·

3 Jun

Stronger Together — Building Cyber Resilience http://feedproxy.google.com/~r/SecurityIntelligence/~3/05CEVNorBtk/?utm_source=twitter&utm_medium=social_Twitter&utm_campaign=Twitter_Posts #coac #informationsecurity #cybersecurity

Reply on Twitter 1268288465822760962 Retweet on Twitter 12682884658227609622 Like on Twitter 12682884658227609621 Twitter 1268288465822760962

John Masserini @John_Masserini·

3 Jun

Severe Cisco DoS Flaw Can Cripple Nexus Switches https://threatpost.com/cisco-dos-flaw-nexus-switches/156203/?utm_source=twitter&utm_medium=social_Twitter&utm_campaign=Twitter_Posts #coac #informationsecurity #cybersecurity

Reply on Twitter 1268273371734781955 Retweet on Twitter 12682733717347819554 Like on Twitter 12682733717347819551 Twitter 1268273371734781955