It has been five years since I published my first Diary at the SANS Internet Storm Center on the topic of getting more involved in your local community. Now that January is almost over and those new year resolutions you made last month may or may not still be in place, I want to give you […]
Blog
Creative Hiring in Cybersecurity
Creative Hiring in Cybersecurity Creative Hiring in Cybersecurity. Is it even possible? Today’s lead story in the SANS NewsBites was “White House/DHS Announce New Cyber Skills Pipeline Initiative.” The two statements below caught my attention. 1 – “The Federal Government struggles to recruit and retain cybersecurity professionals due to a talent shortage and growing demand […]
What Systems Keep You Effective?
What Systems Keep You Effective? Previously I discussed What’s On Your Not To Do List as a means to remain focused on priorities. I never fear running out of work in cybersecurity. Instead, I worry that our focus does not always stay on the most critical issues. Today I want to highlight several techniques I use to help remain effective. […]
Is Your SOC Flying Blind?
I recently posted the below on the SANS Internet Storm Center. Can you imagine being pleased to learn that the pilot of your next flight had anything less than full visibility into the operation of the next airplane you board? Why would you settle for anything less for your Security Operations Center (SOC)? How long can your you […]
Version 7 of the CIS Controls Released
I recently posted the below on the SANS Internet Storm Center. The CIS Controls serve as a “prioritized set of actions to protect your organization and data from known cyber attack vectors.”. Embraced by several organizations as outlined in the Case Studies section, significant improvements to their cyber security programs are listed and can serve as an inspiration to consider this […]
CIS Controls Version 7
I recently posted the below on the SANS Internet Storm Center. The Center for Internet Security (CIS) has been working diligently to update the CIS Controls (formerly known as the Critical Security Controls). A compelling feature of the CIS Controls is their regular updates that reflect the current cyber threats that face organizations, both small and large. The CIS Controls are the product of a […]