Tag Archives: Security

Home Depot Breach 43M loss posting on LinkedIn

I just read an article on LinkedIn about the negative impact caused by the recent Home Depot breach. Here are my thoughts about how all the 2014 breaches should change some C level and Information Security paradigms. These could cause a major … Continue reading

Aside | Posted on November 29, 2014 by | Tagged , , , , , , , , | Leave a comment

The Insider Threat is Alive and Well – a summary taken directly from Raytheon’s How to Build an Insider Threat Program (2014) …

Posted on November 4, 2014 by

Aspects of human nature further complicate matters: Well-intended managers resist any notions of “their people” doing “bad things.” They screened them. They hired them. They work with them side-by-side and – if they’re good bosses – have developed a genuine interest … Continue reading

Posted in Uncategorized | Tagged , , , , , , , , , , , , , | Leave a comment

A day in the life of a senior Cyber Security Incident Responder

Posted on October 21, 2014 by

  The day was proving to be an exciting one for team Havoc, the Company’s cyber Red Team, as the L2 report he had just read showed that 4 of the core company servers were vulnerable to a very common … Continue reading

Posted in Uncategorized | Tagged , , , , , , , , , | Leave a comment

The Cyber Security CIA explained via Calvin and Hobbes

Posted on September 3, 2014 by

Leave it to my son Kody, who is starting his Cyber Security career to come up with this novel way to explain the CIA triad for Cyber Security. In InfoSec terms, CIA refers to Confidentiality, Integrity, and Availability. To illustrate … Continue reading

Posted in Uncategorized | Tagged , , , , , , , | Leave a comment

Compliance does not Equal Security

Posted on March 13, 2014 by

When I read items like this: Agarwal said NoMoreRack is now in the process of certifying itself this time as a Tier-1 merchant, even though the number of credit and debit cards it processed in 2013 placed it squarely in … Continue reading

Posted in Uncategorized | Tagged , , , | Leave a comment

Excelsior National Cyber Security Institute

Posted on December 11, 2013 by

In December 2013 I was named a fellow for the Excelsior National Cyber Security Institute. http://www.nationalcybersecurityinstitute.org/fellows/  

Posted in Uncategorized | Tagged , , , , | Leave a comment

Fun Story about UC Cyber Warfare Game

Posted on October 24, 2013 by

Ok, so I wasn’t going to share this but I sort of think its pretty neat. My friend Quinn and I started an urban legend story at the University of Cincinnati from my classes first cyber warfare event years ago. … Continue reading

Posted in Uncategorized | Tagged , , , | Leave a comment

Why Is It?

Posted on November 20, 2012 by

Why is it that Internet Crime statistics continue to show that for the criminally inclined internet crime is a very viable and fast growing field? Why is it that millions of dollars are stolen from end users who simply fail to … Continue reading

Posted in Uncategorized | Tagged , , , , , | Leave a comment

The Talent Within

Posted on November 9, 2012 by

11/8/2012 In his book “Topgrading: How leading companies win by hiring, coaching and keeping the best people” (2005) Dr. Smart talks about how important it is for a company to not only hire A level talent but then keep and … Continue reading

Posted in Uncategorized | Tagged , , , , , , , | Leave a comment

In Cyber Crisis

Posted on November 6, 2012 by

We are a country in crisis in regards to adopting adequate Information Security practices.   I am not an alarmist but when I review the Cyber Security update that my team compiles and sends out a couple of times per week … Continue reading

Posted in Uncategorized | Tagged , , , , , | Leave a comment