Author Archives: mclaukl

About mclaukl

Professional Certifications - Certified CISO, CISM, CISSP, PMP, ITIL Master Certified, GIAC Security Leadership Certificate (GSLC), CRISC. Kevin also holds Certificates in the Advanced Principles of Information Security and in Advanced Information Security Research Methods from Jones International University. Kevin L. McLaughlin began his career as a Special Agent for the Department of Army. He was responsible for investigating Felony crimes around the globe. He has had many careers over the years, including being a Police Officer in Kissimmee Florida, an Investigator for Mastercard/Visa, a Middle School teacher, a Director at Kennedy Space Center (where he worked with Fred Hayes, James Lovell, Armstrong, Sheppard, etc.), the President of his own company, an IT Manager and Senior Information Security manager with the Procter & Gamble (P&G) company (fortune 35), a CISO at the University of Cincinnati and a Senior Information System Security Manager for the Whirlpool Corporation (fortune 125). Kevin has also been an adjunct since 1992. While at P&G Kevin created one of P&G’s augmentation outsourcing teams in India. Kevin designed and implemented this India team and it won a global Gold Service award from Atos-Origin and has acted as a model for countless corporate relationships since. Over the years Kevin has: created an Information Security program conducted Information Security Strategic planning designed Information Security solutions, investigated over 700 Cyber cases and operated a Global Security Operations Center. • Education - MS in Computer Science Education, BS in Management of Information Systems * PhD in Cyber Security, University of Fairfax

Information Security Defense in Depth Part 2 – A Bit More Technical View

Posted on March 7, 2016 by mclaukl

Still for foundation level folks but a bit more technical view of Defense in Depth than last week’s post.    

Posted in Uncategorized | Tagged , , , , , , , , , | Leave a comment

Critical Manufacturing Cyber Security Defense Program – A Starting Look

Posted on February 28, 2016 by mclaukl

Cyber security professionals  are often tasked with trying to defend more than they have the resources to defend. This is especially true in the area of Critical Manufacturing as there tends to be a strong desire to protect everything.  In … Continue reading

Posted in Critical Manufacturing Cyber Security, Uncategorized | Tagged , , , , , , , , , , | Leave a comment

Cyber Security – A basic look at Defense in Depth

Posted on February 27, 2016 by mclaukl

A basic somewhat quirky and fun look at Defense in Depth.  

Posted in Uncategorized | Tagged , , , , , , , , , | Leave a comment

The Highest Risk Ever….. Not!

Posted on December 20, 2015 by mclaukl

  I just received one of my daily news reports about Cyber Security and it said something to the effect of such and such a Research group has found out that Application Security holes are at highest numbers ever and … Continue reading

Posted in Uncategorized | Tagged , , , , , , | Leave a comment

A Note I Wrote to Someone Who Once Worked for Me

Posted on April 9, 2015 by mclaukl

I recently had the honor to help provide a strong reference for a person who worked for me as a Cyber Analyst.  She got the Senior position she was going for but was just a little worried about what they should do … Continue reading

Posted in Uncategorized | Tagged , , , , , , , | Leave a comment

CIsO or ciSo?

Posted on February 23, 2015 by mclaukl

In some big companies it does make sense to have a polished CISO who is responsible for working both the Boardroom and the IT Executive management group. In those cases a strong security focused Deputy CISO should be considered for … Continue reading

Posted in Uncategorized | Leave a comment

Your Horse Was Analog

Posted on February 9, 2015 by mclaukl

Your Horse Was Analog Kevin L. McLaughlin A  speech I made to 350+ people at the Michigan joint Military Ball.  Amway Grand Plaza Hotel. Like my tie? My wife didn’t – gave me a lot of grief before we left … Continue reading

Posted in Uncategorized | Tagged , , , , , , , , | Leave a comment

I just read an article on LinkedIn about the negative impact caused by the recent Home Depot breach. Here are my thoughts about how all the 2014 breaches should change some C level and Information Security paradigms. These could cause a major … Continue reading

Posted on November 29, 2014 by mclaukl | Leave a comment

The Insider Threat is Alive and Well – a summary taken directly from Raytheon’s How to Build an Insider Threat Program (2014) …

Posted on November 4, 2014 by mclaukl

Aspects of human nature further complicate matters: Well-intended managers resist any notions of “their people” doing “bad things.” They screened them. They hired them. They work with them side-by-side and – if they’re good bosses – have developed a genuine interest … Continue reading

Posted in Uncategorized | Tagged , , , , , , , , , , , , , | Leave a comment

Just a Random Thought After an Information Technology (IT) Meeting

Posted on October 31, 2014 by mclaukl

It is not the job of IT operational support staff to eliminate 100% of failures across the corporate infrastructure. (cost would be too high) It is ITs job to manage failures so that they stay within the levels of operation … Continue reading

Posted in Uncategorized | Tagged , , , , , , , , | Leave a comment