exploringpossibilityspace.blogspot.com
Exploring Possibility Space: Risk Management: Out with the Old, In with the New!
http://exploringpossibilityspace.blogspot.com/2013/08/risk-management-out-with-old-in-with-new.html
Musings on risk, innovation, data science and my PhD dissertation. Monday, August 26, 2013. Risk Management: Out with the Old, In with the New! In this post I'm going to attempt to explain why I think many existing methods of assessing and managing risk in information security (a.k.a. "the Old") are going the wrong direction and describe what I think is a better direction (a.k.a. "the New"). While the House of Cards metaphor is crude, it gets across the idea of interdependence. Here's my main message:.
idoneous-security.blogspot.com
Idoneous Security: May 2014
http://idoneous-security.blogspot.com/2014_05_01_archive.html
I·do·ne·ous [ahy-doh-nee-uhs] adjective: appropriate; fit; suitable; apt. Because I'm all about the "good enough.". Friday, May 30, 2014. Want some more bad news? I didn't think so, but I had to share this anyway. I was listening today to a presentation by the CTO of Dell SecureWorks, Jon Ramsey. Who for some reason has not yet tried to implore me to stop calling him "J-RAM"). He's always full of insights, but this one was both unsurprising and earth-shattering at the same time. Put it nicely when he sai...
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: SIRAcon presentation
http://exploringpossibilityspace.blogspot.com/2014/10/siracon-presentation.html
Musings on risk, innovation, data science and my PhD dissertation. Thursday, October 9, 2014. I'm presenting at SIRAcon today: "How to aggregate ground-truth metrics and indicators into a performance index". It will be recorded and will be available to SIRA members on the SIRA web site. Here are the slides. Here is the blog post with background and tutorial. Subscribe to: Post Comments (Atom). You can follow me on Twitter here. My Google Scholar profile. Follow this blog on Twitter. Search this blog, lin...
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: May 2014
http://exploringpossibilityspace.blogspot.com/2014_05_01_archive.html
Musings on risk, innovation, data science and my PhD dissertation. Thursday, May 1, 2014. Splitting this blog and moving to Octopress. I've decided to split this blog to separate my academic posts from my industry posts. I'm going to be blogging more about my dissertation and related works in progress, and I suspect that most of my industry readers won't be interested and I don't want to dilute my posts on industry topics - information security, risk, performance metrics, etc. Subscribe to: Posts (Atom).
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: I'm leaving Facebook (Frog escapes slowly boiling pot)
http://exploringpossibilityspace.blogspot.com/2013/09/im-leaving-facebook-frog-escapes-slowly.html
Musings on risk, innovation, data science and my PhD dissertation. Thursday, September 12, 2013. I'm leaving Facebook (Frog escapes slowly boiling pot). That's a frog on the handle. It was in the pot. But jumped out when things got too hot. I'm one frog that has noticed that the water in the Facebook pot is getting too hot. For comfort. I'm jumping out. The most recent privacy policy changes are the proximate cause (see this. The title of this post refers to the story of the Boiling Frog. Finally, I don'...
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: April 2014
http://exploringpossibilityspace.blogspot.com/2014_04_01_archive.html
Musings on risk, innovation, data science and my PhD dissertation. Thursday, April 17, 2014. Creative Destruction": 500 word entry for Schneier's Movie Plot Contest. Since I won last year. I wasn't going to enter this year. But my imagination started turning and this came out. Hope you enjoy it. Bruce Schneier's 7th Annual Movie Plot Contest. Full description and all entries are here. June 2014 – March 2015: Stock market booms. June 2014: Snowden revelations trigger international political scandals.
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: B-Sides SF Talk
http://exploringpossibilityspace.blogspot.com/2015/04/b-sides-sf-talk.html
Musings on risk, innovation, data science and my PhD dissertation. Sunday, April 19, 2015. Here is the demo spreadsheet I'll be using in today's B-Sides SF talk on the Thomas Scoring System (TSS):. InfoSec Maturity Assessment (TSS) V1.xlsx. Download the spreadsheet and open in Microsoft Excel 2008 or later. It uses conditional formatting and cell data validation, but no macros or other advanced features. The sheets are protected to avoid data entry errors, but there is no password. Risk Management: Out w...
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: April 2015
http://exploringpossibilityspace.blogspot.com/2015_04_01_archive.html
Musings on risk, innovation, data science and my PhD dissertation. Sunday, April 19, 2015. Here is the demo spreadsheet I'll be using in today's B-Sides SF talk on the Thomas Scoring System (TSS):. InfoSec Maturity Assessment (TSS) V1.xlsx. Download the spreadsheet and open in Microsoft Excel 2008 or later. It uses conditional formatting and cell data validation, but no macros or other advanced features. The sheets are protected to avoid data entry errors, but there is no password. Poor Software QA Is Ro...
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: Ideal book for self-study: "Doing Bayesian Data Analysis"
http://exploringpossibilityspace.blogspot.com/2014/03/ideal-book-for-self-study-doing.html
Musings on risk, innovation, data science and my PhD dissertation. Saturday, March 8, 2014. Ideal book for self-study: "Doing Bayesian Data Analysis". In this post, I'd like to heartily recommend a book for anyone doing self-study who doesn't have much statistics or math in their background:. Kruschke, J. (2010). Doing Bayesian Data Analysis: A Tutorial Introduction with R and BUGS. It builds from very simple foundations. Math is minimized. No proofs. It helps you learn Empirical Bayesian methods. Empiri...
