Sober Security

Opinions expressed by ICN authors are their own.

Opinion

Getting security ‘right’

We love to talk about doing things right, there is no such things as doing it right. Perfect is the enemy of good and also of modern infrastructure.

06/05/18

Opinion

The immature security industry

The security industry often tries to do everything instead of putting focus on a singular area where we can make a real difference. This is a sign of an immature industry.

04/20/18

Opinion

You’re too busy to get your security right

The idea of having a few people who can do a little bit of everything isn’t really working anymore. We’re all too busy to be effective.

03/20/18

Opinion

Collaborative security

We have far too closed of a mindset when we handle security problems.

02/19/18

Opinion

Strategic security

Do you really want to keep solving the same security problems forever?

02/02/18

Opinion

Lessons from Hawaii – how prepared should we be?

If something happens you’ve never seen before, how do you know what to do next?

01/16/18

Opinion

Awareness training has failed us

And if awareness isn’t enough, is it time to look at our problems in a new way?

01/02/18

Opinion

Hard things are hard, security will never be easy

There isn’t a skills shortage for security because these are skills you can’t teach.

12/12/17

Opinion

GitHub’s new security scanner

A new service from GitHub is going to change how we build software. Again.

11/17/17

Opinion

Are you giving useful advice?

If you can’t measure it, it’s not actionable. If it’s not actionable, it’s not useful. And if it’s not useful, is it actually advice?

11/08/17

Opinion

Suddenly, the CEO cares about cybersecurity

When the business leaders start to ask questions about how the organization’s security looks, it’s time to make sure they grasp what’s going on and what needs to happen, so we can do it right.

10/25/17