August 30, 2009 Online Cyberlaw programs People occasionally ask about InfoSec courses that cover law and cyberlaw and about schools that offer cyberlaw programs. I’m curious about this whole thing…
August 26, 2009 Where do they get these numbers? From the Journalistic Approach to Statistics Department … The source of this warmongering is http://www.darkreading.com/security/intrusion-prevention/showArticle.jhtml?articleID=219401410 and Kelly Jackson Higgins uses the dramatic title “Message…
August 18, 2009 8 Dirty Secrets of the IT Security Industry – CSO.com Bill Brenner wrote an article that covers some security consulting in general and PCI DSS in particular. Do make note of points 1,3, and…
August 3, 2009 Significant Impact Calculation in Business Risk My colleague Gary Hinson made the following observation on the ISO 27001 list in August: There are numerous assumptions and estimations in the risk…