Doug Lhotka

Friday Photo – Thanksgiving, turkey, and Cherokee Ranch

November 16, 2018 0

Just south of Denver, is the Cherokee Ranch and Castle - one of those hidden gems that you miss unless you go looking for it. The castle sits on top of a mesa, overlooking the whole front range (I'll share a sunset pano sometime soon). We had the chance to go visit for the Elk [...]

Beyond SIEM – Next Generation Security Analytics

November 14, 2018 0

I’ve written before that security is fundamentally an information management problem. It’s about having good sensors and instrumentation in the environment, having that information flow to a central repository where anomalies can be identified, and then being able to take action on it back in the environment. That’s traditionally be done through a SIEM solution, […]

Entering the era of pervasive security

November 7, 2018 0

I often open a keynote presentation by noting that organizations are undergoing a fundamental shift in security strategy – moving from compliance focused, to a risk based approach. That’s still ongoing, even for large and sophisticated organizations there is still a gravity towards ‘doing it for the audit’, rather than ‘doing it because there’s risk’. […]

Photo Friday – Sunset in Santa Cruz

November 2, 2018 0

When I travel, I keep my camera with me all the time, never knowing when an opportunity will come along. We were having an early dinner on a pier in Santa Cruz when the sun set. I left my dinner and ran outside to capture this pano of the horizon. Definitely worth the cold fish!

Friday Photo – New Horizons in Warrnambool

October 26, 2018 0

We took our first trip to Australia as a break from some really stressful events, and drove the great ocean road to Warrnambool. The B&B there had the most amazing orange cake in the mornings, but in the evening, we just took a walk along the coast to watch the sunset. That's when I saw [...]

Commander’s Intent

October 10, 2018 0

So all your preventative measures have failed – to be fair, they succeeded for the last few thousand hacks, but the bad guys got lucky once, and you now have a full blown incident underway. Unfortunately you (the CEO) is at 23,000’ knocking K2 off their bucket list. How does your company execute?

Friday Photo: Here’s looking at Emu

October 5, 2018 0

The first time we went to Tower Hill in Victoria, Australia, I was just starting to get into photography. We went in the middle of the day, and the critters were few and far between. Since then, my technique has improved, and this time we went at dusk, when they were really active. There was [...]

Don’t Poke the Buffalo

October 2, 2018 0

Ranchers know that there’s little that can stop a determined buffalo – barbed wire is at best a suggestion. That’s why taunting or poking one is just a bad idea (the guy in Yellowstone recently was extremely lucky). Malicious actors can be a bit like that too – that’s why I’ve written before that ‘hacking back’ is [...]

How much should you spend on security?

September 17, 2018 0

I regularly get asked by new CISOs for information – benchmarks – on how much organizations like theirs should spend on security. That’s a deceptively simple question, and while there’s plenty of surveys that you can reference, none of them provide more than a rough starting point – there’s just too many variables.

Disaster Recovery isn’t Security Recovery

September 5, 2018 0

I had an interesting conversation about data integrity attacks recently. Those involve altering records, rather than stealing them. The initial reaction was that they’d just restore from backup (like a disaster recovery plan). When I pointed out that most advanced attacks are in the environment for months before discovery, the light bulb went off: You […]

1 2 … 11 Next →