Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Category Archives: Risk Analysis

Run More Risk Models Faster? … Maybe

– Jim Goodnight, the co-founder and CEO of the SAS Institute has suggested (see Penny Crosman’s March 28, 2013 article “The Trouble with Banks’ Risk Models: Q&A with the Chief of SAS,” at…

Risk and Human Frailty

– My September 12, 2011 BlogInfoSec column “Risk Management – Scoring vs. Monte Carlo vs. Scoring” was about the subjectivity of risk assessments, where the term “subjectivity” was defined as one’s personal view of particular risks. I received some considerable push-back from the likes…

Are Perceptions About Cloud Security and Availability Overblown … and Wrong?

– It appears that the greatest hindrance for organizations to move their applications and data into the cloud is concern about security and availability. While it is arguable whether or not security and privacy risks and system failure rates and durations are greater overall for cloud-based…

Convenience vs. Data Breaches … Avoidance is an Answer

– In “If You’re Collecting Our Data, You Ought to Protect It” in the Business Section of The New York Times of February 17, 2013, Natasha Singer describes how a data breach involving the personal nonpublic information of some 40,000 current and former NASA employees was preceded by an…

Driverless Vehicles – From No Liability to High Risk

– Software companies appear to be having a rude awakening, as described in Dan Strumpf’s article, “Liability Issues Create Potholes On the Road to Driverless Cars,” in The Wall Street Journal of January 28, 2013. Commercial software companies have long gotten away with taking no responsibility…