Articles on Leadership
- Cloud Cloud Risks and the Security Community Most cloud security risks apply to IT in general and either have mitigations or have been accepted. InfoSec's role should be active participation in technical innovation, balancing risk with cost—not...
- Cheat Sheets How to Use the Security Architecture Cheat Sheet for Internet Applications
- Risk Management Risk Management: Objectivist and Subjectivist Approaches Objectivists rely purely on historical data to predict risk; subjectivists complement data with judgment about context. A coin flipped by a magician might warrant different probability assessments...
- Cheat Sheets Security Architecture Cheat Sheet for Internet Applications A cheat sheet for initial design and review of Internet application security architecture, covering four areas: business requirements (data classification, users, partners, regulations),...
- Leadership How to Be Heard in IT Security and Business. 10 Tips.
- Assessments Security Assessment Tips: Where the Risks Are