2010-11-13 San Francisco-053-12

2019 Security Program Horizons

One of the things I love most about my job is the opportunity to collaborate with hundreds of security leaders across many industries and geographies.  There’s definitely industry focuses, as well as some geographic trends, yet the overarching themes are common across the security landscape.  Following the usual year end tradition, here’s what I see [...]
Continue Reading
2017-10 Australia-983-12

Friday Photo – Ready for the Storm: Cape Otway Lighthouse

On our trip to Victoria, Australia we revisited our previous route along the Great Ocean Road.  Last time we didn't have a chance to head down Cape Otway and see the lighthouse, so we made a point to add it to the itinerary.  We visited on a blustery October day, with the wind biting and [...]
Continue Reading
(C) Copyright Depositphotos / @luislouro

Technical Storytelling – Keeping your Audience Awake

When people ask me what I really do for a living, I tell them I’m a storyteller: I listen to people tell how things are, apply my experience and insight to the situation, then tell a story about how we can make the future better. After a recent keynote, I was flattered when several people […]

Continue Reading
2018-09-28 Castle Visit-005-12

Friday Photo – Thanksgiving, turkey, and Cherokee Ranch

Just south of Denver, is the Cherokee Ranch and Castle - one of those hidden gems that you miss unless you go looking for it.  The castle sits on top of a mesa, overlooking the whole front range (I'll share a sunset pano sometime soon).  We had the chance to go visit for the Elk [...]
Continue Reading
(C) Depositphotos / @ooGleb

Beyond SIEM – Next Generation Security Analytics

I’ve written before that security is fundamentally an information management problem. It’s about having good sensors and instrumentation in the environment, having that information flow to a central repository where anomalies can be identified, and then being able to take action on it back in the environment. That’s traditionally be done through a SIEM solution, […]

Continue Reading
(c) Depositfiles / 	katacarix

Entering the era of pervasive security

I often open a keynote presentation by noting that organizations are undergoing a fundamental shift in security strategy – moving from compliance focused, to a risk based approach. That’s still ongoing, even for large and sophisticated organizations there is still a gravity towards ‘doing it for the audit’, rather than ‘doing it because there’s risk’. […]

Continue Reading
2013-10-California-369-Pano-12

Photo Friday – Sunset in Santa Cruz

When I travel, I keep my camera with me all the time, never knowing when an opportunity will come along.  We were having an early dinner on a pier in Santa Cruz when the sun set.  I left my dinner and ran outside to capture this pano of the horizon.  Definitely worth the cold fish!
Continue Reading
20071022_Australia-292-12

Friday Photo – New Horizons in Warrnambool

We took our first trip to Australia as a break from some really stressful events, and drove the great ocean road to Warrnambool.  The B&B there had the most amazing orange cake in the mornings, but in the evening, we just took a walk along the coast to watch the sunset. That's when I saw [...]
Continue Reading
2010-11-13 San Francisco-088-12

Commander’s Intent

So all your preventative measures have failed – to be fair, they succeeded for the last few thousand hacks, but the bad guys got lucky once, and you now have a full blown incident underway. Unfortunately you (the CEO) is at 23,000’ knocking K2 off their bucket list. How does your company execute?

Continue Reading
2017-10 Australia-239

Friday Photo: Here’s looking at Emu

The first time we went to Tower Hill in Victoria, Australia, I was just starting to get into photography.  We went in the middle of the day, and the critters were few and far between.  Since then, my technique has improved, and this time we went at dusk, when they were really active.  There was [...]
Continue Reading