The Security Catalyst
The independent information security podcast and blog with leading edge insights in an easy to understand format
-
In Defense of Breach Notification Laws (sort of)
Starting with Californias 2003 law,1 all but a hand full of states have now enacted breach notification laws (BNLs). Though each is subtly different, all notification laws recognize that a if your identity, or Data Self, is treated as mere chattel, it is subject to fraud and abuse. These laws requ …
-
When it happens to you (and it will happen), will you be ready?
BrightTALK has invited me to share insights and research from Into the Breach next Tuesday, 3:30p (Eastern) in a focused discussion. There is no charge for you to attend, and no sales pitch from me. No death by powerpoint, either. Instead, join me for an interactive look at the real challenges we fa …
-
Security Catalyst Community Update: December 9, 2008
Progress is impossible without change, and those who cannot change their minds cannot change anything. - George Bernard Shaw Greetings from the beltway - situated right between Baltimore and Washington, DC. As part of an action packed week, I have been invited to the DHS Blogger Roundtable (thanks t …
-
Preparing for Success in 2009 (its not too late!)
I have so much to say and yet I continue to run out of time to say it. The last few weeks have found me (and the family) literally around the entire United States sharing ideas, energy and passion with everyone. It has me brimming with passion and lacking in time! In addition to publishing Into the …
-
Doing The Right Thing
By Joe Knape The focus of The Security Catalyst is Changing the way people protect information. Despite the deep respect I have for Michael, Im skeptical that can be done. Before we can change the way people are protecting information we have to get them to protect it in the first place. My ex …
-
When Burning Buildings Become Blasé
by Michael Starks Imagine if a building on every street started on fire every day. They are small fires, which cause relatively little damage, and are usually quickly extinguished by the sprinkler system. Every once in awhile, the entire house burns down because the sprinkler system hasnt been upd …
-
Breaches Cost Companies Customers
By Adam Dodge There has been a lot of discussion around the value of breach statistics and breach reporting. Personally, I feel that organizations can find a lot of value by monitoring reported breaches. By studying what breaches are being reported, especially within the same industry vertical. Orga …
-
Electronic Information Retention Policy
By Patrick Romero The exponential growth in electronic information and the costs managing it, particularly in litigation, has spurred renewed interest in electronic records management and document retention programs. A sound approach to developing an electronic records management and retention prog …
-
When Did My Personal Information Become Your Property?
A colleague recently asked me, When did my personal information become someone elses property? Its a vital question, because if my personal information belongs to someone else, then they can do whatever they want with it. If data is property, then they can buy, sell, license, or give away my ident …
-
I prepare to depart Michigan with gifts for you
After a great week in Michigan, tonight we pack up and prepare to head to Ohio tomorrow. Friday promises to be busy and exciting and then on Saturday, we head to Maryland (Metro DC) for a week. Which brings me to the gifts I promised: Join a conversation, get a free copy (hardcover) of Into the Br …
-
(SCC) Catalyst Community Update for November 12, 2008
It has been an interesting two weeks thanks to a catastrophic failure on the bulk of my web servers thanks to an unannounced dreamhost switch/migration that results in their setting all permissions incorrectly. Its a long and boring story loaded with insights for anyone involved in technology …
-
Selective Notification
As the Privacy Director for the Liberty Coalition, I have discovered and documented roughly 100 breaches on our website, SSNBreach.org. There, any member of the public can search for his or her name to find out whether their personal information was exposed, under what conditions, and whos responsi …
-
Security Roundtable for October 11, 2008 - Social Media Ethics
The world of blogging, podcasting and social media is a dynamic and dominant force in the way individuals share and consume information. In this fast-paced approach to sharing, we stop to consider the ethics involved. With the help of Jennifer Leggio - social media expert, former journalist and …
-
Catalyst Community Update for October 21, 2008
After a great time at the Microsoft Small Business Summit, I flew home only to spend 5 hours on delay in the Newark airport. I was fine, but was missing the RV! Well, we got the RV back on Friday, loaded it up and headed out on Saturday. We arrived Sunday night in Kansas City - and I was honored to …
-
Vacuums and Security
By Adam Dodge This weekend I finally did it. I was tired of the sub-par performance. Tired of being forced to redo the same job over and over again to get it right. Just plain tired of nothing working like it should. So I broke down. I had just had enough. This weekend I bought myself a new vacuum. …
-
Whats Your Personal Unique Selling Proposition?
By Joe Coates Picture this. You get on the elevator and realize you are alone with the CEO of your organization. He looks at you and says, Tell me in 25 words or less what you do and why it is important to this company. What would you say? Do you have an answer prepared? Does your answer have …
-
Join me in Kansas City - next Thursday (October 23, 7pm)
While in Kansas City next week, I have been invited (Thanks Ax0n!) to the Cowtown Computer Congress - and look forward to a relaxing - and engaging evening. If you are in or near the Kansas City area, I hope you make the time to come and spend time with other passionate professionals. More details h …
-
Announcing the Into the Breach eBook edition with special offer (free, as in beer)
Into the Breach is currently available in hardcover edition - and can be purchased directly from the intothebreach.com website, amazon.com and your favorite bookseller. Walking through the airport(s) today, I realized this is a book designed for reading on an airplane (but I digress) I previously an …
-
Catalyst Community Update for October 14, 2008
It is with excitement that I board an airplane this morning bound for Redmond, Washington. I am participating in the Microsoft Small Business Summit speaking on not only the protection of information, but also how the return to fundamentals outlined in Into the Breach allows companies to improve p …
-
Join me at the Microsoft Small Business Summit This Wednesday
I am honored to be a speaker on protecting information for the Microsoft Small Business Summit on Wednesday. I fly out to Redmond on Tuesday morning - and have my moments during the day on Wednesday. You can follow along live! At this am a day 2 speaker - with an impressive lineup of is a live progr …
The Security Catalyst
