{"id":252,"date":"2017-04-29T00:04:00","date_gmt":"2017-04-29T00:04:00","guid":{"rendered":"https:\/\/securityeverafter.com\/2017\/04\/29\/know-before-no\/"},"modified":"2023-02-22T11:17:33","modified_gmt":"2023-02-22T16:17:33","slug":"know-before-no","status":"publish","type":"post","link":"https:\/\/securityeverafter.com\/know-before-no\/","title":{"rendered":"KNOW before NO"},"content":{"rendered":"<h1>KNOW before NO<\/h1>\n<p><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-1711 \" title=\"Hand with the word no\" src=\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?resize=488%2C325&#038;ssl=1\" alt=\"Hand with the word no\" width=\"488\" height=\"325\" srcset=\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?resize=1536%2C1024&amp;ssl=1 1536w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?w=2048&amp;ssl=1 2048w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2017\/04\/No.jpg?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 488px) 100vw, 488px\" \/><br \/>\n<span style=\"background-color: white; color: #666666; font-family: 'trebuchet ms' , 'trebuchet' , 'verdana' , sans-serif; font-size: 13.2px; line-height: 18.48px;\"><br \/>\n<\/span><span style=\"color: #666666; font-family: trebuchet ms, trebuchet, verdana, sans-serif;\"><span style=\"font-size: 13.2px;\">A good friend told me an engaged information security professional leads with the KNOW instead of the NO. This comment struck me and has resonated well for the last several years. It has encouraged me to better understand the desires of the business areas in an attempt to avoid the perception of being the &#8220;no police\u201d.\u00a0<\/span><\/span><\/p>\n<p><span style=\"color: #666666; font-family: trebuchet ms, trebuchet, verdana, sans-serif;\"><span style=\"font-size: 13.2px;\">We can recognize the value in sprinkling information security concepts early and often into software development projects. This approach saves each stakeholder a lot of time and frustration, especially when compared to the opposite direction, which often causes the information security team to learn at the very last minute of a new high-profile project that is about to launch without the proper level of information security engagement.<\/span><\/span><br \/>\n<span style=\"color: #666666; font-family: trebuchet ms, trebuchet, verdana, sans-serif;\"><span style=\"font-size: 13.2px;\"><br \/>\n<\/span><\/span><span style=\"color: #666666; font-family: trebuchet ms, trebuchet, verdana, sans-serif;\"><span style=\"font-size: 13.2px;\">Projects and initiatives may still warrant a \u201cno\u201d from an information security perspective. Before we go there by default, I respectfully invite all to KNOW before we NO. We can improve engagement with our respective business areas by considering this approach. In what areas can you KNOW before you NO next week?<\/span><\/span><\/p>\n<p><span style=\"background-color: white; color: #666666; font-family: 'trebuchet ms' , 'trebuchet' , 'verdana' , sans-serif; font-size: 13.2px; line-height: 18.48px;\">I recently posted this article <\/span><span style=\"background-color: white; color: #666666; font-family: 'trebuchet ms' , 'trebuchet' , 'verdana' , sans-serif; font-size: 13.2px; line-height: 18.48px;\">on the\u00a0<\/span><a style=\"background-color: white; color: #888888; font-family: 'trebuchet ms', trebuchet, verdana, sans-serif; font-size: 13.2px; line-height: 18.48px; text-decoration-line: none;\" href=\"https:\/\/isc.sans.edu\/diaryarchive.html\">SANS Internet Storm Center<\/a><span style=\"background-color: white; color: #666666; font-family: 'trebuchet ms' , 'trebuchet' , 'verdana' , sans-serif; font-size: 13.2px; line-height: 18.48px;\">. <\/span><\/p>\n<p><span style=\"background-color: white; color: #666666; font-family: 'trebuchet ms' , 'trebuchet' , 'verdana' , sans-serif; font-size: 13.2px; line-height: 18.48px;\"><a href=\"https:\/\/www.securityeverafter.com\/community\">Subscribe to our email list<\/a> to get more cybersecurity content delivered to your Inbox!<\/span><\/p>\n<p><span style=\"color: #666666; font-family: trebuchet ms, trebuchet, verdana, sans-serif;\"><span style=\"font-size: 13.2px;\">Russell Eubanks<\/span><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>KNOW before NO A good friend told me an engaged information security professional leads with the KNOW instead of the NO. This comment struck me and has resonated well for the last several years. It has encouraged me to better understand the desires of the business areas in an attempt to avoid the perception of [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":554,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[7,31,10],"tags":[],"jetpack_publicize_connections":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>KNOW before NO - Security Ever After - vCISO<\/title>\n<meta name=\"description\" content=\"KNOW before NO\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/securityeverafter.com\/know-before-no\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"KNOW before NO - Security Ever After - vCISO\" \/>\n<meta property=\"og:description\" content=\"KNOW before NO\" \/>\n<meta property=\"og:url\" content=\"https:\/\/securityeverafter.com\/know-before-no\/\" \/>\n<meta property=\"og:site_name\" content=\"Security Ever After - vCISO\" \/>\n<meta property=\"article:published_time\" content=\"2017-04-29T00:04:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-02-22T16:17:33+00:00\" \/>\n<meta name=\"author\" content=\"Russell\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@russelleubanks\" \/>\n<meta name=\"twitter:site\" content=\"@russelleubanks\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Russell\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/\"},\"author\":{\"name\":\"Russell\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3\"},\"headline\":\"KNOW before NO\",\"datePublished\":\"2017-04-29T00:04:00+00:00\",\"dateModified\":\"2023-02-22T16:17:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/\"},\"wordCount\":208,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/securityeverafter.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage\"},\"thumbnailUrl\":\"\",\"articleSection\":[\"Leadership\",\"Lessons Learned\",\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/securityeverafter.com\/know-before-no\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/\",\"url\":\"https:\/\/securityeverafter.com\/know-before-no\/\",\"name\":\"KNOW before NO - Security Ever After - vCISO\",\"isPartOf\":{\"@id\":\"https:\/\/securityeverafter.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage\"},\"thumbnailUrl\":\"\",\"datePublished\":\"2017-04-29T00:04:00+00:00\",\"dateModified\":\"2023-02-22T16:17:33+00:00\",\"description\":\"KNOW before NO\",\"breadcrumb\":{\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/securityeverafter.com\/know-before-no\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/securityeverafter.com\/know-before-no\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/securityeverafter.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"KNOW before NO\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/securityeverafter.com\/#website\",\"url\":\"https:\/\/securityeverafter.com\/\",\"name\":\"Security Ever After - CISO\",\"description\":\"vCISO\",\"publisher\":{\"@id\":\"https:\/\/securityeverafter.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/securityeverafter.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/securityeverafter.com\/#organization\",\"name\":\"Security Ever After\",\"url\":\"https:\/\/securityeverafter.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1\",\"width\":1169,\"height\":826,\"caption\":\"Security Ever After\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/russelleubanks\",\"https:\/\/www.linkedin.com\/in\/russelleubanks\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3\",\"name\":\"Russell\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg\",\"caption\":\"Russell\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"KNOW before NO - Security Ever After - vCISO","description":"KNOW before NO","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/securityeverafter.com\/know-before-no\/","og_locale":"en_US","og_type":"article","og_title":"KNOW before NO - Security Ever After - vCISO","og_description":"KNOW before NO","og_url":"https:\/\/securityeverafter.com\/know-before-no\/","og_site_name":"Security Ever After - vCISO","article_published_time":"2017-04-29T00:04:00+00:00","article_modified_time":"2023-02-22T16:17:33+00:00","author":"Russell","twitter_card":"summary_large_image","twitter_creator":"@russelleubanks","twitter_site":"@russelleubanks","twitter_misc":{"Written by":"Russell","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/securityeverafter.com\/know-before-no\/#article","isPartOf":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/"},"author":{"name":"Russell","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3"},"headline":"KNOW before NO","datePublished":"2017-04-29T00:04:00+00:00","dateModified":"2023-02-22T16:17:33+00:00","mainEntityOfPage":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/"},"wordCount":208,"commentCount":0,"publisher":{"@id":"https:\/\/securityeverafter.com\/#organization"},"image":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage"},"thumbnailUrl":"","articleSection":["Leadership","Lessons Learned","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/securityeverafter.com\/know-before-no\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/securityeverafter.com\/know-before-no\/","url":"https:\/\/securityeverafter.com\/know-before-no\/","name":"KNOW before NO - Security Ever After - vCISO","isPartOf":{"@id":"https:\/\/securityeverafter.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage"},"image":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage"},"thumbnailUrl":"","datePublished":"2017-04-29T00:04:00+00:00","dateModified":"2023-02-22T16:17:33+00:00","description":"KNOW before NO","breadcrumb":{"@id":"https:\/\/securityeverafter.com\/know-before-no\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/securityeverafter.com\/know-before-no\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/know-before-no\/#primaryimage","url":"","contentUrl":""},{"@type":"BreadcrumbList","@id":"https:\/\/securityeverafter.com\/know-before-no\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/securityeverafter.com\/"},{"@type":"ListItem","position":2,"name":"KNOW before NO"}]},{"@type":"WebSite","@id":"https:\/\/securityeverafter.com\/#website","url":"https:\/\/securityeverafter.com\/","name":"Security Ever After - CISO","description":"vCISO","publisher":{"@id":"https:\/\/securityeverafter.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/securityeverafter.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/securityeverafter.com\/#organization","name":"Security Ever After","url":"https:\/\/securityeverafter.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1","contentUrl":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1","width":1169,"height":826,"caption":"Security Ever After"},"image":{"@id":"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/russelleubanks","https:\/\/www.linkedin.com\/in\/russelleubanks\/"]},{"@type":"Person","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3","name":"Russell","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg","caption":"Russell"}}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/252"}],"collection":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/comments?post=252"}],"version-history":[{"count":2,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/252\/revisions"}],"predecessor-version":[{"id":1712,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/252\/revisions\/1712"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/media?parent=252"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/categories?post=252"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/tags?post=252"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}