Operational Security
Connecting with others is critical but it can also pose a risk. It's important not to "leak" information needlessly. This is a practice know as operational security. It's critically important...and often ignored.
Connecting with others is critical but it can also pose a risk. It's important not to "leak" information needlessly. This is a practice know as operational security. It's critically important...and often ignored.
No one wins all the time. Don't seek out failure but we shouldn't be afraid of sharing our failures so that others may learn.
You cannot stand at "Red Alert" 24/7 but that's exactly what we do in cybersecurity...often without realizing it. What impact does that have an our approach? Our attitude? Our mental health?
If you're working by hand, you're failing. In today's world of security, rapid delivery, and new technologies, automation is critical.
There's only upside to collaborating more deeply with other teams in the org. So why doesn't the security get out there and do it?!?
We've spoken a lot of maintaining and expanding perspective when it comes to cybersecurity. In this episode, we dive in highlight a methodology called "service design thinking".
We (the IT community) don't push for cultural change because it requires persistent and dedicated long term work. That runs counter to the usual pace of technology. We (the security community) are even worse off...
Is it just attitude that keeps security teams from working well with the rest of the organization? And if so, can that attitude be changed? What's keeping things so negative. Some thoughts...
Most of the focus around cybersecurity education is on the technical aspects. Is that the right approach?
Listening to customers is built into the DNA of a lot of organizations...why aren't security teams doing the same?
Passwords are the best of a mountain of bad solutions. Picking a strong password lies at the intersection of math (yay!) and psychology...that's a tough place to be. Here are a few tips on creating a useful, strong password.