Curated Daily Industry News

Image




The Interrupt-driven Life of a CISO

The Interrupt-driven Life of a CISO

7 min read
The interrupt-driven life of a CISO and how stress impacts our thought process and the changes we make to how our minds work.
Simplify Your Value Statement

Simplify Your Value Statement

8 min read
In order to communicate their message quickly, Vendors need to develop a value statement that appeals to a CISO by quickly articulating how your solution reduces risk, minimizes staffing issues, or enhances budget.
New Version of the NIST CSF Tool

New Version of the NIST CSF Tool

1 min read
Please note: Version 2.1 of the tool was uploaded to the site on February 28, 2022, due to a formula bug in the privacy worksheet. I am quite thrilled to announce that the long-overdue update to my NIST CSF tool V2.0 is finally done. While this new version generally looks the same as the prior […]
The Problem With The Industry Analyst

The Problem With The Industry Analyst

12 min read
Thoughts on the damage caused by Research Firms to the Information Security field and why the role of the Industry Analyst must change.
Millicom Builds Transformational Identity Security Program

Millicom Builds Transformational Identity Security Program

1 min read
The perimeter is dissolving. Employees are using any device from any location for work. With limited visibility from our traditional networking and endpoint security controls, how do we protect our data?
Identity Management as a Foundation for Future-Proofing your Security

Identity Management as a Foundation for Future-Proofing your Security

1 min read
The perimeter is dissolving. Employees are using any device from any location for work. With limited visibility from our traditional networking and endpoint security controls, how do we protect our data?
What if Identity Didn’t Exist?

What if Identity Didn’t Exist?

1 min read
The concept of Identity is critical to what we do. If it didn’t exist, how would it change your approach and how would you answer the question?
Cybersecurity in the age of the pandemic

Cybersecurity in the age of the pandemic

1 min read
An interview with The Times (UK) around the need for an effective awareness and training program to manage the rapid growth of the remote workforce.
CSNP: How Working From Home Is Changing The Business Environment

CSNP: How Working From Home Is Changing The Business Environment

1 min read
I recently had a wonderful opportunity to sit in on a panel discussing how the pandemic is going to change the way security practitioners think about protecting their organizations.
BeyondTrust: CISO Diaries

BeyondTrust: CISO Diaries

1 min read
I had the honor of participating in the LinkedIn Live event on some of the scarest things I have ever heard from my security team.
CISO 101: How to Walk & Talk Like a CISO

CISO 101: How to Walk & Talk Like a CISO

1 min read
I had an opportunity to reflect on what is takes to be a CISO, how I got here, and where I think the industry is heading.
Ed Talks: Kicking 3rd-Party Software Risk to the Curb

Ed Talks: Kicking 3rd-Party Software Risk to the Curb

1 min read
Panel discussion on third-party risk. Topics included conducting software composition analysis (SCA), assessing threats and impacts, risk-rating your inventory, and selecting the right controls.
Companies Battle Another Pandemic: Skyrocketing Hacking Attempts

Companies Battle Another Pandemic: Skyrocketing Hacking Attempts

2 min read
An interview with the Wall Street Journal around the rapid uptick in enterprise attacks seen amongst the initial weeks of the COVID-19 outbreak.
New Resource: Industry Statistics and Metrics

New Resource: Industry Statistics and Metrics

2 min read
A collection of information security metrics and statistic resources to use when discussing the state of information security. Many of the typical suspects are here – DDoS, Ransomware, SPAM, Insider Threats, DevOps, as well as many others.
Companies Rush to Implement Identity Systems for Remote Working

Companies Rush to Implement Identity Systems for Remote Working

1 min read
An interview with the Wall Street Journal around the need for an effective identity management solution to manage the rapid growth of the remote workforce.