Ira Winkler

Contributing Columnist

Ira Winkler, CISSP, is president of Secure Mentem, and author of the forthcoming book, Advanced Persistent Security. He can be contacted at securementem.com.

If you think ransomware is a user failure, you’re a failure

Parting advice from Howard Schmidt

Parting advice from Howard Schmidt

Security expert Ira Winkler reflects on the late-Howard Schmidt.

Why awareness needs to teach scam detection and reaction

Why awareness needs to teach scam detection and reaction

Most awareness programs teach users how to behave. Ira Winkler argues training needs to go further so people know what to do if they do fall victim to fraud.

At Dulles, a security awareness success story

At Dulles, a security awareness success story

The detention of Norway’s former prime minister, when stripped of politics, was an example of proper security awareness.

The flaw in applying culture to awareness programs

The flaw in applying culture to awareness programs

I appreciate that organizations are beginning to realize that they need to understand their corporate culture in their implementation of awareness programs. It is long overdue. Unfortunately as a concept, it is being grossly...

Making the GRIZZLY STEPPE Joint Action Report useful

Making the GRIZZLY STEPPE Joint Action Report useful

I was surprised when I saw the cynicism to the Joint Action Report (JAR) put out by the Department of Homeland Security and FBI. It seems like it is cool to criticize the report, and that can be a disservice to the whole industry.

The security gift guide

The security gift guide

Give the gift of security, so people will give you the gift of not asking for help and advice.

What awareness is supposed to be

What awareness is supposed to be

Recent W-2 and accounts payable thefts show governance should be the cornerstone of awareness.

What is phishing success?

What is phishing success?

A recent article asking the question to security professionals seemed to miss the mark, and raises more questions than it answers.

What awareness gamification programs can learn from Pokemon Go

What awareness gamification programs can learn from Pokemon Go

At the moment, the only intended gamification of Pokemon Go is to encourage people to spend money within the game. There are potentially future uses of the game, such as to get people to spend money at partner vendors. For now...

Pokemon Go: What security awareness programs should be doing now

Pokemon Go: What security awareness programs should be doing now

Pokemon Go represents a tremendous security threat. As with all tremendous threats, it can also be your greatest opportunity.

Meet the hacker taking over ISIS twitter accounts

Meet the hacker taking over ISIS twitter accounts

In the last week, Wauchula Ghost has been attracting even more attention as he has been successfully compromising the twitter accounts of ISIS sympathizers, and posting gay porn on those accounts in retaliation for the Orlando...

Load More