The process isn’t broken, it likely doesn’t exist

If you’re understaffed, overcompensate with automation Efficient – Usain Bolt in the 100m dash. Effective – John Elway famously in “The Drive” against the Cleveland Browns. How do you put those two elements together and make your security team unbeatable? You start by building processes, not unlike the quarterback’s playbook. On any given play, all …

The process isn’t broken, it likely doesn’t exist Read More »

We’re technology people, but we can still learn to communicate better

We’ve all felt it before. We’re in the middle of a presentation and we can see the audience looks bored. Or we read the terse response to an email we just sent. We all struggle at times getting our point across effectively and respectfully. But I have found that if you just follow these 3 steps, you’ll be a lot more effective at communicating, whether in oral or written form.

Why is security still being left out of the discussion?

It’s time to break down the silos and build strategy and process as a unified team Interested in learning more? Click here to join our membership site wait list. IT strategic plan – aligned with the business and coordinated with security Most organizations maintain an annual strategic plan that aligns IT strategy with the overall …

Why is security still being left out of the discussion? Read More »

Newcomers to security, how do we give you the foundations you need?

Like many, I get pulled in many directions yet I have to stay current on a variety of subjects. And let’s face it, that’s really hard to do. Especially when we have to shift focus from varying topics like going from an SDL design project to teaching a technical writing course. For better or worse, …

Newcomers to security, how do we give you the foundations you need? Read More »

Building an assessment program

I’ve heard this question now several times, “What do you mean build a security assessment program? Do you mean build a security program?” My answer is consistently “no”. Your assessment program should be part of your overall security program, but they are separate (albeit related) initiatives. So what is a security assessment program? Think of …

Building an assessment program Read More »