Saturday, August 26, 2017

Thursday, June 8, 2017

Blogging Elsewhere: 10 Ways Organizations can get ready for breach disclosure


10 Ways Organizations can get ready for breach disclosure

https://f5.com/labs/articles/cisotociso/compliance/10-ways-organizations-can-get-ready-for-breach-disclosure

An important part of the Assume Breach philosophy is getting ready to say "I'm sorry".  Poop happens, be prepared to deal with it.

Blogging Elsewhere: How a CISO can play a role in selling security


How a CISO can play a role in selling security

https://f5.com/labs/articles/cisotociso/leadership/how-a-ciso-can-play-a-role-in-selling-security-26942

Anyone in the CISO game knows that you end up having to "sell" the security of your organization to customers and partners... so why not name it and claim it?

Blogging elsewhere: Can your risk assessment stand up under scrutiny?


Can your risk assessment stand up under scrutiny?

https://f5.com/labs/articles/cisotociso/compliance/can-your-risk-assessment-stand-up-under-scrutiny-26784

When something in the news catches my eye, I feel compelled to dig deeper

Blogging elsewhere: 7 Upgrades to level up your security program experience


7 Upgrades to level up your security program experience

https://f5.com/labs/articles/cisotociso/strategy/7-upgrades-to-level-up-your-security-program-experience-26703

A smattering of general advice

Blogging elsewhere: Stalking in the Workplace: What can CISOs do?


Blogging elsewhere: Stalking in the Workplace: What can CISOs do?

https://f5.com/labs/articles/cisotociso/leadership/stalking-in-the-workplace-what-cisos-can-do-26165

A personal one from me.  Also covered fictionally via Heidi over here