Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Category Archives: InfoSec Economics

At Last! A Reporter Who Understands Cybersecurity

– We are bombarded with TV news, newspaper articles, blogs, comments, and the like, about cybersecurity. Most reporters seem to be in awe of the attackers (sophisticated criminals and nation states, for the most part) and sympathetic to the victims. After all, so it goes, the attackers are so clever…

Outsourcing and Offshoring – Now Insourcing and Reshoring

– There have been hints about the recent movement towards “insourcing” and “reshoring,” along with the usual confusion regarding terms used. In the December 2012 issue of The Atlantic magazine (pages 45-52), there was a noteworthy article by Charles Fishman called “The Insourcing Boom,”…

Will Cloud Security Drive You Insane?

– First, the transparency … I have known Jim Reavis, co-founder of the Cloud Security Alliance (CSA), for a dozen years or so. He is a true visionary. He met with me before creating the CSA and asked me what I thought. I told him to go for it. He did and has had remarkable success […] …

Nastier at NASDAQ and the ROI of Security

– Here is a correction to “Nastiness at NASDAQ” BlogInfoSec, March 7, 2011. The first sentence of the second paragraph should read “From my particular perspective, the most disturbing aspect of the incident, as reported, is that either NASDAQ staff or law enforcement apparently do NOT know…

The Economics of Safety and Security

– One of the most horrifying comments through the entire Japanese mega-catastrophe was that by CNBC anchor Larry Kudlow, as reported in a March 20, 2011 New York Times article by Jeff Sommer with the title: “A Crisis That Markets Can’t Grasp – As Japan’s Disaster Evolves, Wall Street Keeps…