There are two main strategies I use when I’m in the role of CISO: Make sure people know what’s expected of them. This includes written procedures, training, and periodic reminders…
Read More
Q: What are the key topics you would cover in your initial one-hour basic training program on security for non-IT personnel? AND What sort of additional security related training might…
We’ve just begun a series of blog posts that cover some of the most common questions I get asked about cybersecurity. Here are the last two weeks of questions in…
Here are my best practices for online passwords: Do not reuse passwords with different accounts. Ever. There is a major, often successful cyber attack pattern used against those people who…
People often ask me questions about cybersecurity. Over the next several weeks I’m going to share some of these questions here. Q: What should I look for when shopping for…
Fire, Flood, and Cybersecurity In some respects, cybersecurity is not that different than protecting your building against fire or flood. For instance, if you choose to construct a building on…
In previous posts, I’ve explained how cybercrime is big business, and the criminals behind the illegal activity run sophisticated online companies. Today, let’s begin talking about how to defend your…
The following is adapted from Fire Doesn’t Innovate. Ransomware is one of the nastiest types of cyberattacks. When ransomware infects your computer, its first directive is to encrypt all of…
The following is adapted from Fire Doesn’t Innovate. We all know people whose definition of password security is writing their password on a Post-It Note and slapping it on the…
The following is adapted from Fire Doesn’t Innovate. For as long as people have had possessions, other people have tried to steal them. Up until recently, if someone wanted to…