Tag Archives: CISO

IT and Infosec Insourcing: Could You Do It If You Wanted To?

– There was an article by Timothy Aeppel on the front page of the June 13, 2008 issue of The Wall Street Journal with the title “Stung by Soaring Transport Cost, Factories Bring Jobs Home Again” (subscription required). The article is about manufacturers bringing back some of their…

In Praise of the Information Security Checklist

– This is much anger and venom spit when the subject of the information security checklist is brought up. At one point in my career I looked at the checklist in disdain figuring that only people who do not understand the true depths of a subject relied on checklists as a crutch in place of…

Being a Government Security CISO: Life in the Fishbowl

– Information Security is Information Security, Right? It shouldn’t matter if the organization needing protection is a government agency operating in the public sector or a private enterprise, should it ? Well, technically, no. Essential security practices should be delivered for whichever…

InfoSec Recruiter Brocaglia on Balancing the Hard and Soft Skills

– Heed this column – the advice herein is not to be missed! There’s a dynamite chapter in the book “CISO Leadership: Essential Principles for Success“, written by Joyce Brocaglia, uber-recruiter of security professionals. She offers invaluable advice on how to ‘advance your…

Fitting the CIA Triad in a Business Context: The Concept of Agile Security

– Last year, Harvard Business School Press published a very interesting book entitled IT Risk: Turning Business Threats into Competitive Advantage by George Westerman and Richard Hunter. Westerman is a Research Scientist at the Center for Information Systems Research at the MIT Sloan School of…