Latest News
Blog
- tl;dr – A Wonk’s Guide to Effective Vulnerability ManagementI published a rather lengthy blog post about the importance of patch management to the success of a security program. Due to the length of the post I thought I’d add a tl;dr version of the primary points …
Continue reading “tl;dr – A Wonk’s Guide to Effective Vulnerability Management”
- A Wonk’s Guide to Effective Vulnerability ManagementI’m going to cover something that arguably has the greatest impact on the security posture of an organization and is not something that information security is typically responsible for. It’s something that can make or break a company’s …
Continue reading “A Wonk’s Guide to Effective Vulnerability Management”
- This is the best take I’ve seen regarding the Twitter files distraction
- What CISO’s really mean when they say “threat”When I hear a CISO speaking about threats on an information security podcasts I know most everyone probably thinks they are talking about nation-state or criminal actors. The truth is that they are more likely talking about things …
Continue reading “What CISO’s really mean when they say “threat””
Toots
- Brief #introduction: >10 years #CISO>20 years #InfoSec I am a pragmatic security executive. I enjoy #whiskey, #bbq, #reading and listing to #podcasts that feature an eclectic mix of history, philosophy, sci-fi, and #management books. I mainly play story-driven #RPG (like #Witcher), #Destiny2, #NoMansSky, and #Minecraft. Interests/expertise includes: #Security #DevSecOps #Leadership #Governance #Tech #Economics #Philosophy #History […]