Posts Tagged ‘Informationsecurity’
Information Security Risks, Gray Rhinos and Black Swans
Information security over the past few years has been obsessed with zero-day vulnerabilities, hacking exploits, and headline-making mega breaches. Every security risk manager is looking for the “unknown unknowns” that could result in untimely unemployment. But is that the right approach? One presentation and one book made me think otherwise. The presentation was Alex Stamos’s…
Read MoreManaging Information Security On a Limited Budget
The recent government shutdown got me thinking about budgets and information security. Having just submitted a proposal to a small business myself, I am asking the question: What is best practice for small or mid-sized business (SMB) information security? Every SMB is going to have a limited budget. This budget has to cover control implementation and maintenance. There’s no…
Read More