IT Security Management

Paradigm Shift

A True Paradigm Shift in Security Management

“Cyber Security 1.0” was vulnerability based, and has what I would argue limited and decreasing levels of success as public breaches continue at a record pace even though IT and IT security spending continues to be an increasing leadership and spending priority. The problem as I see it is that, at least in North America, we…

Read More
Managing Important Risks

Managing the Important Risks

In my first post I discussed the fact that public breaches are trending to all time high levels. Combine this with continued financial pressures to cut costs, expanding technology risk drivers such as cloud computing and the ‘consumerization’ of IT, and you have the perfect storm for an unmanageable attack surface given the current investment…

Read More
Security Intelligence Next Big Thing

Security Intelligence – The Next Big Thing

In 2010 Gartner espoused that applied security (Signals) intelligence was no longer an option for companies. I called the analyst on this not because I thought he was wrong, far from the contrary, more because I thought they should swing for the fences a little bit more readily! Signals intelligence is a great and useful…

Read More