My Writing

Tools The Importance of Feeling Secure
Feeling secure differs from being secure—both matter. Users may abandon effective but quiet security tools, CISOs need compelling metrics and reports even when doing excellent work, and clients need...
Malware The Worst Information Security Advice Ever
A collection of terrible security advice gathered from Twitter: use short passwords, rely solely on firewalls for protection, skip testing before production deployment, avoid logging to prevent...
Product Management The Company of Self: A Career Development Org Chart
Managing one's career can be approached by treating oneself as the CEO of a company with multiple departments: product development (skills), sales and marketing (visibility), R&D (continued...
Risk Management Understand the Risks of Email Search Add-Ons and Services
Cloud email search tools like Greplin and Xobni index messages and contacts across services, creating attractive targets for attackers. Most vendors provide little detail about security measures....
Malware APT Cartoon #6: APT Goes Mainstream on TV
Malware Why I Make Fun of Advanced Persistent Threat (APT)

No results found