exploringpossibilityspace.blogspot.com
Exploring Possibility Space: Risk Management: Out with the Old, In with the New!
http://exploringpossibilityspace.blogspot.com/2013/08/risk-management-out-with-old-in-with-new.html
Musings on risk, innovation, data science and my PhD dissertation. Monday, August 26, 2013. Risk Management: Out with the Old, In with the New! In this post I'm going to attempt to explain why I think many existing methods of assessing and managing risk in information security (a.k.a. "the Old") are going the wrong direction and describe what I think is a better direction (a.k.a. "the New"). While the House of Cards metaphor is crude, it gets across the idea of interdependence. Here's my main message:.
guerilla-ciso.com
Compliance | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/compliance
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. FedRAMP: It’s Here but Not Yet Here. Posted December 12th, 2011 by rybolov.
guerilla-ciso.com
Accounting | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/accounting
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. GAO’s 5 Steps to “Fix” FISMA. Posted July 2nd, 2009 by rybolov. In other w...
guerilla-ciso.com
Comments | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/comments
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. FedRAMP: It’s Here but Not Yet Here. Posted December 12th, 2011 by rybolov.
guerilla-ciso.com
800-37 | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/800-37
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. FedRAMP: It’s Here but Not Yet Here. Posted December 12th, 2011 by rybolov.
exploringpossibilityspace.blogspot.com
Exploring Possibility Space: SIRAcon presentation
http://exploringpossibilityspace.blogspot.com/2014/10/siracon-presentation.html
Musings on risk, innovation, data science and my PhD dissertation. Thursday, October 9, 2014. I'm presenting at SIRAcon today: "How to aggregate ground-truth metrics and indicators into a performance index". It will be recorded and will be available to SIRA members on the SIRA web site. Here are the slides. Here is the blog post with background and tutorial. Subscribe to: Post Comments (Atom). You can follow me on Twitter here. My Google Scholar profile. Follow this blog on Twitter. Search this blog, lin...
guerilla-ciso.com
C&A | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/ca
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. FedRAMP: It’s Here but Not Yet Here. Posted December 12th, 2011 by rybolov.
guerilla-ciso.com
Accreditation | The Guerilla CISO
http://www.guerilla-ciso.com/archives/tag/accreditation
No public Twitter messages. Vlad the Impaler on DDoS and Elections. Vlad the Impaler on DDoS and Elections. Allen de Klerk on More on the Rybolov Information Security Management Model. Mini-me on DHS is Looking for a CISO. Tim Ruland on The Guerilla CISO Rants: Don’t Write a System Security Plan. Diary of a Startup. What Doesn't Work. Cypher Punk Reading List. How Is That Assurance Evidence. The New School of Information Security. FedRAMP: It’s Here but Not Yet Here. Posted December 12th, 2011 by rybolov.
SOCIAL ENGAGEMENT