harnessing the human side of security
by Ioana Justus If you were asked to throw a few million dollars out the window, would you do it? If yes, let me know where and when – I’ll happily wait outside with my catcher’s mitt. More likely, the quick answer to this question is a resounding “NO”. Few circumstances would lead someone to [...]
by Jeff Kirsch In “Playing Gamesâ€, I shared some lessons that I learned while playing chess with my son. Chess is a rich example of the need for, and challenge of, planning ahead. For those unfamiliar with this game of skill and strategy, the goal is simple: Capture your opponent’s king and force him into [...]
by Carl Anctil Background: A few months ago, Microsoft released (and silently installed through Windows Update) a .NET Framework Assistant add-on for the Firefox web browser. Microsoft installed this add-on to Firefox without warning the user that the add-on would be installed as part of the .NET Framework 3.5 Service Pack 1. Security professionals, bloggers, [...]
by Ron Woerner Whether you call it lay-offs, downsizing, rightsizing, redundancies, a reduction in force, or whatever, a reduction in staff stinks. Downturns in the economy often translate to a reduced volume of business, resulting in a correlated reduction in staff. One of the hardest jobs in Security is ensuring that those who are asked [...]
by Jeff Kirsch Recently, my son told me a story about how he played chess with a friend at school. In his story, he said his friend executed a certain move; my son then asked me if I had ever tried that move. I was a bit confused; I’ve played chess on and off for [...]
Welcome to the audio series of Into the Breach: Protect Your Business by Managing People, Information and Risk (click this link to learn more about this book and pick up a complete copy – to get started on your personal journey). This series, underwritten by Configuresoft, now part of EMC, is the full and unabridged [...]
Podcast: Play in new window | Download (8.4MB)
I’ve heard other authors exclaim that at the end of the writing process, it felt as if they were ready to give birth — and couldn’t wait for this labor of love to be done…. Now that I’m nearing the home stretch of this book, I’m starting to understand…Into the Breach: Why Companies Fail to Protect Data and What We Need to Do About It has been under development long enough! I have distilled the problem and presented a careful and easy-to-follow solution that will help companies improve their top line, protect their bottom lines and manage people, risk and information more efficiently. I am writing a book for business leaders to understand the fundamentals of how to unmask our human problem and take simple steps to reduce the chaos…. Seriously, though, my best friend lives in Charlotte – and he and some other good friends have suggested that we consider moving our base of operations to the Carolinas. The more the tell me about the region, the more I’m inclined to agree, so I decided it would be a good time to take 10-12 days to head down and check it out, while wrapping up the book.I could use your helpIf you live or do business in Charlotte – I would love to speak with you, or even meet with you in the next two weeks. I’m seriously considering moving our business there — and I’d like to learn about the business climate, partnership opportunities (or companies looking for a partner), family environment and the like…. I’m happy to share.When you will get the bookI plan to have the galley copies out by the end of the month to my review team…. I promise I’ll do what I can to get this information to you and into the hands of decision makers as soon as I can.I also am offering a limited number of my Information Protection Program to companies that want to implement the suggestions in the book to reduce the risk of breach, while reducing the cost of compliance.
Communications“You must be the change you wish to see in the world.â€-Mahatma GandhiIn Part I of Change is Good, I gave you an overview of our developments at The Security Catalyst…. Our new website will be launched at the end of this month.
Catalyst Club – unique coaching, job-aids and the ability to practice and improveThe Security Catalyst blog and podcast will gain new energy thanks to the addition of two new team members. With their support, we are developing a production schedule which will allow me to share research, analysis and opinions with you on a more regular basis. Shortly, you will notice a new blog template. In a few weeks, you’ll noticea slight change to it’s location (it will be found at /blog). We all have a lot to share, and we’re looking forward to the change.We are about to start rolling out the changes…. Soon you will experience the new look, feel and functionality of our web-based services…. Watch for ‘Change is Good: Part III’ next week.
OverviewChange your thoughts and you change your world. — Norman Vincent PealeIt has been a year of change at The Security Catalyst.First we changed our thinking about what our contribution to information protection should be. Then we changed our offerings. We invested in a solid foundation, built the infrastructure for delivery and now we’re rolling out the results.
enriched blogging with more analysis, research, perspectives and updates on my training for the Iron Man (specifically as it relates to information protection).
the work of new team members Quite simply, our focus and research put us at the intersection where information becomes understanding and enables us to change the way people protect information.Watch for ‘Change is Good: Part II’ next week.
As we continue to deal with breaches, compliance, privacy initiatives and awareness… we are still vexed by the nagging concern, “Do we have privacy anymore?”Tomorrow, I’m moderating the September Security Round Table with a panel of experts, including: Martin McKeay, Rebecca Herold, Andrew Hay, Dr. Anton Chuvakin, Dan YorkHigh Level ApproachOur focus is on exploring and addressing the questions of privacy. As we’re working on our outline, we’re preparing to address questions such as: Definition of privacyHow have the attitudes of government and the populace changed privacy in the last decade?Does the average end user understand privacy?Online databasesWhat can we do today and can we recover the privacy we’ve lost (or never had)?Your Chance to be InvolvedWhat questions do you have? What do you want us to try to answer tomorrow? Send me your ideas, questions and suggestions to: securitycatalyst@gmail.comPS: Sorry for the late notice. We’ll have more lead time for October (awareness) and the upcoming programs.
Michael Santarcangelo is the catalyst* called upon to deliver successful results when others have struggled and failed to harness the human side of security. Blending a degree in human ecology with … [Read More...]
Effective communication of security ensures that whether written, spoken or blended across delivery options efforts are positioned to reduce friction, bring technology and business objectives into alignment and inspire those we serve to … [Read More...]
Engage with Michael Santarcangelo