Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Category Archives: Human Elements

Security in the Dark

December 6, 2011 – 6:00 am – I attended a roundtable recently at which someone mentioned that, in their experience, those familiar contractual requirements requesting third-party service providers to tell their customers about security breaches within a short time frame (within three  hours, say) are often not conveyed to…
By | Also posted in Compliance and Laws, CSO/CISO Perspectives | Tagged , , , , | Comments (0)

Risk Mismanagement – Scoring vs. Monte Carlo vs. Scoring

September 12, 2011 – 6:00 am – I finally got to read Douglas Hubbard’s book “The Failure of Risk Management: Why It’s Broken and How to Fix It” (Wiley, 2009). As I have written in other columns about Hubbard’s prior book “How to Measure Anything: Finding the Value of Intangibles in Business” (Wiley, 2007; Second…
By | Also posted in CSO/CISO Perspectives, Risk Analysis | Tagged , , , , , , , , , , , , | Comments (3)

Passwords – Once Again, Encore Une Fois, Noch Einmal …

August 16, 2011 – 6:00 am – Not again. Yes, again. Randall Stross is beating the password drum again … and again … and again. I thought that he had put the matter to rest (see my November 24, 3008 column “Passwords – Déjà Vu All Over Again” and my October 4, 2010 column “Passwords … Here We Go…
By | Also posted in Cybercrime | Tagged , , , , , , , | Comments (0)

Mitigating the “Humin Errur” Risk

June 13, 2011 – 6:00 am – There is a retrospective report on May 18, 2011 in The Wall Street Journal by Yuka Hayashi and Phred Dvorak, with the title “Fresh Tales of Chaos Emerge From Early in Nuclear Crisis,” which describes the first few minutes following the earthquake that hit Japan on 3-11-11 and how workers in…
By | Also posted in Contingency Planning, General, software engineering | Tagged , , , , | Comments (0)

The Economics of Safety and Security

April 18, 2011 – 6:00 am – One of the most horrifying comments through the entire Japanese mega-catastrophe was that by CNBC anchor Larry Kudlow, as reported in a March 20, 2011 New York Times article by Jeff Sommer with the title: “A Crisis That Markets Can’t Grasp – As Japan’s Disaster Evolves, Wall Street Keeps…
By | Also posted in Contingency Planning, General, InfoSec Economics | Tagged , , , , , , | Comments (0)