I love challenges, and working with Oracle products has always been a challenge for me. This love/hate relationship started ~20 years ago when I could not set up the first version of Oracle Internet Directory, following the documentation word by word! I had to "fix" several scripts to make it install, and in the end, even though it installed, it still wouldn't work... It was the only product I cared enough to remember that failure after so many years. Or maybe, the only product I failed to tame.
I often get into discussions about budgets and how much a company should invest in its security program. There is no easy answer because the problem we are trying to solve has many unknowns.
There are many ways one may address this question, the main one being a rule of thumb.
On 26th and 27th of March I was invited to participate in the [Cyber Security for Critical Infrastructure 4.0 https://www.cybersenate.com/new-events/2019/3/26/critical-infrastructure-cyber-security] conference organized by Cyber Senate in Amsterdam. It was a very nice conference, organized brilliantly by Alex Matthews and James Nesbitt. Chris Blask was in charge of the coordination of the conference, and we all enjoyed a nice flow of the talks, panels and breaks.