Sense of Security written by C. Warren Axelrod

C. Warren Axelrod is the Chief Privacy Officer and Business Information Security Officer for a financial services company, where he interfaces with the firm’s business units to identify and assess privacy and security risks and mitigate them, to have employees become familiar with security policies, standards, and procedures, and to ensure that they are followed.

Warren was honored with the prestigious Information Security Executive (ISE) Luminary Leadership Award 2007. He also received a Computerworld Premier 100 IT Leaders Award in 2003 and his department’s implementation of an intrusion detection system was given a Best in Class award.

He represented financial services information security interests at the Y2K command center in Washington, DC during the century date rollover. He is a founder of the FS/ISAC (Financial Services Information Sharing and Analysis Center) and served two terms on its Board of Managers. He testified at a Congressional Hearing in 2001 on cyber security.

Warren has published two books on computer management and numerous articles on a variety of information technology and information security topics, including computer and network security, contingency planning, and computer-related risks. His third book, “Outsourcing Information Security,” was published by Artech House in September 2004.

He holds a PhD in managerial economics from the Johnson Graduate School of Management at Cornell University and honors bachelors and masters degrees in electrical engineering, economics and statistics from the University of Glasgow, Scotland. He is certified as a CISSP and CISM.

Cybersecurity Risk’s “New Math”

– Mary K. Pratt posted an article, “The new math of cybersecurity value,” on CSOonline on September 21, 2021, available at The new math of cybersecurity value | CSO Online   It is a good article that brings up longstanding issues with security metrics, but it is by no means “new.”…

Human vs. Artificial Intelligence in Autonomous Systems

– A common goal, as we see in many articles on AI (artificial intelligence) and ML (machine learning), is to make AI/ML systems more like humans. Some claim that humans are much better at driving road vehicles than self-driving software, even though the accident statistics appear to contradict this…

The Demise of Self-Driving Cars as Such

– This is a follow-on column to my May 10, 2021 BlogInfoSec post “Will Full Autonomy Ever Be Realized?” It is prompted in part by the recent decision by the NHTSA (National Highway Transportation Safety Administration) to investigate a number of crashes that occurred when Tesla’s Autopilot…

Cybersecurity Lessons from the Pandemic: CDC Model and FS/ISAC

– It is very ironic to see that, on August 18, 2021, the CDC (Centers for Disease Control and Prevention) announced the formation of a Center for Forecasting and Outbreak Analysis, see CDC Stands Up New Disease Forecasting Center | CDC Online Newsroom | CDC   I say that because when we…

Cybersecurity and AI/ML Biases

– Cyberattackers and cyberdefenders appear to be utilizing AI (artificial intelligence) and ML (machine learning) to a rapidly increasing degree, if you are to believe the press, vendors’ claims and blogs. So, it makes sense for cybersecurity professionals and researchers to get a better…