What do you think this is?

just thoughts of a restless mind...

Steps in no-man’s land

Steps in no-man’s land

Some major breaches have seen the light of day lately, and everybody agrees that they will keep coming. I don’t believe you will find any security professional respecting himself to tell you that this will stop. The reasons are many, but the most important one is the (lack of) security design. Systems, processes and services have been moving to production without security design for years. And unfortunately in many cases they still do.

In our (security) profession it is becoming common to jump on each other’s throat; and the result is the public blaming of the CISO involved - like leaving them alone to take some hard steps in the middle of no man’s land.

Read more ...

Tagged in : business, security, leadership

Information Security and Risk Management as a business enabler

Information Security and Risk Management as a business enabler

A common problem for information security professionals, is that security is perceived as a business blocker; hindering the operational efficiency and adding controls that make everybody’s life more difficult. But is this actually the case?

Read more ...

Tagged in : risk management, information security, business enablement, management, leadership