by Sarah Clarke | Oct 9, 2015 | Corporate Security, InfoSec
First of what may turn into a series of GRC day job related posts. Here I’m highlighting challenges for anyone involved with system security audits or assessments. This isn’t about merits of various standards, home grown lists of security controls, or...
by Sarah Clarke | Sep 25, 2015 | Corporate Security, Featured, InfoSec
It is a beautiful day on the Downton estate. Dappled sun beneath the majestic oak decorates the couple who have their heads together in urgent conversation: “But Carson will never agree” argues Head of Marketing, Lady Mary “He will have little choice...
by Infospectives | Sep 15, 2015 | Corporate Security, InfoSec, Security for all
This isn’t about getting your staff drunk on tonic infused Hendricks, Bombay Sapphire, or Beefeater (depending on your office-hours drinking policy), this is about putting a face to security, then building knowledge and relationships through open and...
by Sarah Clarke | Sep 14, 2015 | Corporate Security, InfoSec
Something is wrong if you are hearing “JUMP!” then saying “HOW HIGH?!” in response to CVEs, SIEM/DLP alerts, threat intelligence reports and excited ‘cyber’ headlines. The ability to quickly and realistically respond to new...
by Infospectives | Sep 8, 2015 | Corporate Security, InfoSec, Security for all
The problem causing the dip in my often prolific blog posting is my arrival at a particular point on the security (or anything) knowledge and confidence curve. Rather than deep navel gazing (emphasis there on the gazing not the navel) I’ll illustrate via the...
by Infospectives | Aug 11, 2015 | Corporate Security, InfoSec
…at least for a while. I wrote about business culture eating cybersecurity for breakfast in four sizeable parts last week. This is the partner post promised, including suggestions and pleas for change (while respecting the fact that change requires a long-term...