So this was cool. I got invited by Jeff Man to join him, Kat Valentine, and Fredrick Lee on this great podcast. They asked some tough questions, I believe I managed to confuse everyone, a few eggs were broken, and...
The 2020 election might be the greatest metaphor yet of the fundamental changes that are happening in the world of global cybersecurity. Technical hacking is now being augmented, and in many cases replaced, by misinformation and disinformation campaigns, psychological warfare...
Wanna hear a crazy story? Shall we go to lunch? For me, these two questions seem to be naturally interlinked. So much so that I had struck many lasting friendships while answering them, as is (for example) evident in the...
(this is a repost dated April 2018 from my old blog, which I thought should be preserved as it is still oddly relevant) Stop it!I swear, if one more person comes to me and asks me about hashing or encrypting...
We know now how security management shouldn’t work. But where does that leave us? To answer the question, this being a book and all, let’s attempt to craft a new paradigm. We are building a new structure, and we should...
Let me share a personal story, about how my formal career in security started. “You’ve done security before, right?” I was sitting in my quite typical Silicon Valley office. An actual office, mind you—while open-space was becoming all the rage,...
One of the key topics I address in my book Why CISOs Fail is how companies repeatedly and recurrently hire wrong. They will hire smart, experienced people, and then set them up to fail, frustrating them out of the job...