Over the past few weeks, it seems that everyone online has an opinion about the recent Kathy Sierra incident. Whether you’re for BBC’s appeal for a new blogging code of conduct or not, I think the reaction from bloggers is very interesting. CSOs should take note. There are hundreds of blogs about the Kathy Sierra incident. If you want to learn more about what actually happened, a Google search on “Kathy Sierra death threats” will yield almost half a million results that you can examine. The BBC is leading the charge for a new blogging code of conduct. One interesting blog is called “Hate, Threats, and the Culture of Love.” The CyberJournalist.net has created a model Bloggers’ Code of Ethics, with such items as: “Be Honest and Fair, Minimize Harm and Be Accountable.” Bloggers should also admit mistakes and correct them promptly.Of course, a large number of bloggers think this is lunacy, such as Duncan Riley. He calls this effort, “Stupidity Personified.” But whichever side you’re on, I think there are several questions raised that CSOs can take away from this debate. Question #1 – Why can’t we get the same level of interest and debate going around other areas of online ethical behavior? Why can’t we build a healthy online security culture at our companies and governments? Is it that death threats finally cross the line? Clearly these threats are horrible and illegal, but so are many of the other behaviors which are rampant online. Question #2 – Why stop at a blogging code of conduct? There is a wide list of ethical issues with current online behaviors – which are discussed in several of my previous blogs. Why not have a code of conduct for other areas beyond blogging? Why did this one situation – a death threat – lead to new calls for a blogging code of conduct? For example, there is racially-charged hate language used in response to blogs all over the internet without the same level of response. The ethical list from CyberJournalist.net goes even further. These are just a few questions, but there are many more which could be asked. I don’t have clear answers, but somehow CSOs need to figure out how to turn this situation from “lemons to lemonade.” Perhaps some good can come from this yet. One suggestion: talk about it with your staff. Why do they think this incident struck such a world-wide appeal for a blogging code of conduct from some people? Why are others so against it? Any thoughts? Related content opinion 3 security career lessons from 'Back to the Future' You don't need to be able to predict the future to have a successful security career, but you had darned well better be able to learn from the past. By Dan Lohrmann Jan 12, 2021 6 mins Careers Security interview Secrets of industry-hopping CSOs Who says you can't change industries? Veteran security leaders Mark Weatherford and Cheri McGuire teach you how it’s done. By Dan Lohrmann Mar 02, 2020 12 mins Careers Security opinion Why security pros are addicted to FUD and what you can do about it Despite professing anti-FUD rhetoric, cyber experts fan the flames, breathlessly sharing the details of the latest data breaches. It's a risky addiction that can lead to security apathy in enterprises. Here's how to harness it. By Dan Lohrmann Sep 06, 2018 7 mins Security opinion Bridging the smart cities security divide There are plenty of organizations that seem to be working on answers to secure smart cities, but in many ways it's like the early days of cloud computing with everyone building their own solutions. By Dan Lohrmann Feb 01, 2018 6 mins Internet of Things Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe