Foreword from Why CISOs Fail, 2nd Edition
I still remember when getting a book published was a bucket-list item. It had to start with writing one, which seemed simple before I embarked on the journey of actually doing it. That proved to be anything but, and getting...
Do We Need a Pentest?
Having firmly established my reputation as the HexCISO – the security antichrist, who constantly tried to turn the security dial down, in clear violation of all the rules of cyber career and product promotions – as you know, I occasionally...
My Turn to Talk about Joe
Let’s talk a little bit about the Uber/Joe Sullivan case. Yes, I know, it’s already yesterday’s news, and I’m so very late to the party. Still. As you know, I made my career in being a recurring non-officer CISO –...
An Early Failure
(This is an excerpt from my book, “The Security Hippie“) Since this is a book of stories, a personal story would be a good a place as any to start. And an excellent one to start with is the very...
Breach Mongering
Are you a senior, non-technology executive or board member? especially so for a public company? Have you had to deal with your CISO lately? Isn’t it just the most fun you could ever imagine having? Fifty Shades aside, let’s talk...
SHOW, DON’T TELL: HOW A HIGHLY RESPECTED FICTION TROPE CAN SERVE ANY CISO
I have been writing my third book recently. No, it’s not in security. It’s actually a fantasy book. It’s a lot of fun, and it has also led to a pretty neat and innovative (or so I like to think)...
