What can grilling chicken teach us about securty?

What can grilling chicken teach us about security?  More than you might initially realize.  I discuss in my latest DarkReading piece: https://www.darkreading.com/perimeter/setting-the-table-for-effective-cybersecurity-20-culinary-questions/a/d-id/1333471.  Bon Appetit!

When is the right time to cut your losses on a wasteful security project?

When is the right time to cut your losses on a wasteful security project? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/when-cut-your-losses-wasteful-security-project.

8 Security Buzzwords That Are Too Good to Be True

Can you name 8 security buzzwords that are too good to be true?  I can.  My latest piece in DarkReading discusses: https://www.darkreading.com/cloud/8-security-buzzwords-that-are-too-good-to-be-true/a/d-id/1333291.

How can laziness be a wonderful motivator in security?

Can laziness be a motivating factor in security?  I would argue that it indeed can be.  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/laziness-wonderful-motivator-security.  Hope you enjoy.

Good Times in Security Come When You Least Expect Them

How can we set ourselves up to appreciate the good times that come when we least expect them?  I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/good-times-in-security-come-when-you-least-expect-them/a/d-id/1333091.

How can letting go of the familiar improve information security?

How can letting go of the familiar improve information security?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/how-letting-go-familiar-can-improve-security-maturity.  I hope you'll find the piece interesting.

Why is the right diagnosis important in security?

Why is the right diagnosis important in security?  I discuss in my latest DarkReading piece:  https://www.darkreading.com/operations/the-right-diagnosis-a-cybersecurity-perspective/a/d-id/1332913.  I think you'll enjoy this piece.

Why is a healthy data diet the secret to a healthy security program?

Why is a healthy data diet the secret to a healthy security program?  I discuss in my latest DarkReading piece: https://www.darkreading.com/risk/why-a-healthy-data-diet-is-the-secret-to-healthy-security-/a/d-id/1332718.

Knowing When To Trust

When is it time to trust?  When is it time to hold your cards closely?  There is a time for everything.  Curious as to how you can understand when to share and when not to?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/knowing-when-trust.

Conference Speakers: Why Understanding Your Audience is Key

Why is knowing your audience so important, particularly when it comes to security conferences?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/conference-speakers-why-understanding-your-audience-key.  Hope you enjoy the piece.

How 'Projection' Slows Down the Path to Security Maturity

What is projection and how can it slow down the path to security maturity?  I discuss in my latest DarkReading piece: https://www.darkreading.com/threat-intelligence/how-projection-slows-down-the-path-to-security-maturity/a/d-id/1332369.  I hope you'll find the piece enlightening.

What we don't see can hurt us

How can what we don't see hurt us? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-what-we-dont-see-can-hurt-us.  I hope you'll enjoy.

Keep an Eye on Your Security Technology Portion Size

What can portion control teach us about acquiring security technology more strategically? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/keep-eye-your-security-technology-portion-size.  I hope you enjoy.

6 Ways Greed Has a Negative Effect on Cybersecurity

What are 6 ways greed has a negative effect on cyber security?  I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/6-ways-greed-has-a-negative-effect-on-cybersecurity/a/d-id/1332006.  I hope that the piece causes my readers to stop and think about a topic that is increasingly worrying me.

Considerations For Evaluating Vendor Risk Management Solutions

What should enterprises look for when evaluating Vendor Risk Management (VRM) solutions? I discuss in my latest SecurityWeek  piece: https://www.securityweek.com/considerations-evaluating-vendor-risk-management-solutions.  I think you will find the piece helpful and informative.  Hopefully I have helped to bring a little clarity to an otherwise confusing market segment.

10 Security Behaviors That Anger Us

Why do we get angry with people for doing what we incentivize them to do?  And what can we learn from this in security?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/10-security-behaviors-anger-us.

20 Signs You Are Heading for a Retention Problem

Could you be heading for a security retention problem?  I discuss 20 signs you could be heading in that direction in my latest DarkReading piece:  https://www.darkreading.com/careers-and-people/20-signs-you-are-heading-for-a-retention-problem/a/d-id/1331749.  I think you'll find the piece interesting.

10 Reasons To Break Up With Your Legacy SIEM

Ever feel like you get less and less value out of your SIEM with each passing year?  I think you'll find that you're not alone.  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/10-reasons-break-your-legacy-siem.  Hope you enjoy.

Security for the Ages: Make it Memorable

Do those of us in security sometimes forget how our field looks to others? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-ages-make-it-memorable. Hope you find the piece thought provoking.

20 Ways to Increase the Efficiency of the Incident Response Workflow

What are 20 ways to increase the efficiency of the incident response workflow? My latest piece in DarkReading explores: https://www.darkreading.com/perimeter/-20-ways-to-increase-the-efficiency-of-the-incident-response-workflow/a/d-id/1331430.

What are 10 signs you need to be more direct?

Do you avoid conflict?  Do you skirt difficult conversations or uncomfortable situations?  How could it help you to be more direct?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-practitioners-10-signs-you-need-be-more-direct.  Hope you enjoy and find it relevant for improving your security program.

Can you name 10 ways to close that security sale?

Following on to my last SecurityWeek piece by popular request: Can you name 10 ways to close that security sale? I can: https://www.securityweek.com/10-ways-close-security-sale. Hope you enjoy the piece and find it helpful.

Pragmatic Security: 20 Signs You Are 'Boiling the Ocean'

Does your security organization have an ocean boiling problem?  I discuss in my latest DarkReading piece: https://www.darkreading.com/threat-intelligence/pragmatic-security-20-signs-you-are-boiling-the-ocean/a/d-id/1331178.  I hope you enjoy and find the piece insightful.

Can you name 10 ways to lose that security sale?

Can you name 10 ways to lose that security sale?  I can.  My latest in SecurityWeek discusses: https://www.securityweek.com/10-ways-lose-security-sale.  Hope you find the piece interesting and informative.

Automation is a dish best served precisely, no?

Automation is a dish best served precisely, no? I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/20-signs-you-need-to-introduce-automation-into-security-ops/a/d-id/1331005.  In the piece, I offer different pinpointed areas within security operations where it may make sense to introduce automation.  This is in contrast to how some approach automation, which is to settle on an automation solution and then go looking for a problem to solve with it.  Hope you enjoy the piece.

Did the reaction of the security industry to Meltdown and Spectre rub you the wrong way as well?

Did the reaction of the security industry to Meltdown and Spectre rub you the wrong way as well?  I certainly wasn't a big fan of the way the industry responded.  I discuss in my latest SecurityWeek piece: http://www.securityweek.com/wanted-actionable-information-practical-advice.  Hope you find the piece meaningful and thought provoking.

Is your security organization busy or productive?

Are you a busy, or a productive security organization?  The difference between the two is huge.  Curious what I mean?  I discuss in my latest DarkReading piece: https://www.darkreading.com/vulnerabilities---threats/in-security-and-life-busy-is-not-a-badge-of-honor/a/d-id/1330818.

Do you also feel that solving real security problems isn't sexy?

Do you also feel that solving real security problems isn't sexy? My latest in @SecurityWeek discusses: http://www.securityweek.com/solving-security-problems-isnt-sexy. I hope you'll find the piece interesting and one that touches on an important point.