Kevin
-
Recent Posts
-
-
Archives
- January 2025
- December 2024
- October 2023
- September 2023
- July 2023
- June 2023
- May 2023
- April 2023
- February 2023
- January 2023
- July 2022
- May 2022
- April 2018
- February 2018
- June 2017
- September 2016
- March 2016
- February 2016
- December 2015
- April 2015
- February 2015
- November 2014
- October 2014
- September 2014
- March 2014
- December 2013
- October 2013
- March 2013
- November 2012
- October 2012
-
Tag Archives: compliance
Critical Manufacturing Cyber Security Defense Program – A Starting Look
Cyber security professionals are often tasked with trying to defend more than they have the resources to defend. This is especially true in the area of Critical Manufacturing as there tends to be a strong desire to protect everything. In … Continue reading
Cyber Security – A basic look at Defense in Depth
A basic somewhat quirky and fun look at Defense in Depth.
Your Horse Was Analog
Your Horse Was Analog Kevin L. McLaughlin A speech I made to 350+ people at the Michigan joint Military Ball. Amway Grand Plaza Hotel. Like my tie? My wife didn’t – gave me a lot of grief before we left … Continue reading
The Insider Threat is Alive and Well – a summary taken directly from Raytheon’s How to Build an Insider Threat Program (2014) …
Aspects of human nature further complicate matters: Well-intended managers resist any notions of “their people” doing “bad things.” They screened them. They hired them. They work with them side-by-side and – if they’re good bosses – have developed a genuine interest … Continue reading
Posted in Uncategorized
Tagged compliance, cyber security, Cyber Security Incident Response, Incident Response, information assurance, information security, Information Security Policy, information system security, Information Technology, Policy, risk, risk assessment, risk management, Security
Leave a comment
Just a Random Thought After an Information Technology (IT) Meeting
It is not the job of IT operational support staff to eliminate 100% of failures across the corporate infrastructure. (cost would be too high) It is ITs job to manage failures so that they stay within the levels of operation … Continue reading
A day in the life of a senior Cyber Security Incident Responder
The day was proving to be an exciting one for team Havoc, the Company’s cyber Red Team, as the L2 report he had just read showed that 4 of the core company servers were vulnerable to a very common … Continue reading
Compliance does not Equal Security
When I read items like this: Agarwal said NoMoreRack is now in the process of certifying itself this time as a Tier-1 merchant, even though the number of credit and debit cards it processed in 2013 placed it squarely in … Continue reading
kevinlmclaughlin.com 