- Risk Management The Contagious Smell of Fear in Cybersecurity
Security decisions are affected by factors beyond rational analysis—choice fatigue, sleep deprivation, and anxiety. Research shows fear can spread through scent. Excessive fear-based messaging may...
- Assessments Cheat Sheet for Creating Security Assessment Reports
There's surprisingly little online guidance about creating good security assessment reports. This one-page cheat sheet covers the general approach, data analysis, methodology documentation, scope...
- Assessments Why Your Assessment Recommendations Get Ignored
Whether anyone acts on your security findings is only partly in your control. You can shift the part that is through clearer writing, stronger evidence, and severity rated by real risk.
- Social Networking Security Implications of the "Web" Becoming the "Social Web"
The web is becoming the social web—instant communication, public archives, mobile access, weak relationships. Security implications: business interactions occur outside corporate networks, data leaks...
- Assessments A Strong Executive Summary for Your Security Report
Decision-makers decide how to act on your findings based on what they see in the executive summary. Write it deliberately, with your readers' priorities and needs in mind.
- Incident Response The Critical Role of the Security Incident Response Coordinator
The incident response coordinator is the linchpin of IR efforts—tracking progress, coordinating team members, providing status updates, and channeling expertise. The ideal candidate knows IT, has...