By Bob Gourley If you are or have been involved in enterprise grade cyber security you know the importance of collaboration among trusted teams of professionals. One of the most virtuous groups enhancing the ability to execute on trusted collaboration is the TSCP: The Transglobal Secure Collaboratio...
By Bob Gourley The National Institute of Standards and Technology (NIST), working collaboratively across a broad range of stakeholders, released a Cybersecurity Framework in February 2014. This framework, based on the functions of Protect, Detect and Response, has been adopted as a common model for ...
By George Romas Why does security have to be so onerous? Is this password secure enough: Mxyzptlk? Wait, that might be vulnerable to a comic book dictionary attack (bonus points for Superman fans), so let’s add some numbers and special characters: M4xyZ!ptL#K. Not bad, but suppose policy requires ...
By George Romas I previously wrote about the various “functional areas” of continuous monitoring. According to the federal model, there are 15 functional areas comprising a comprehensive continuous monitoring solution, as shown in the graphic below: These functional areas are grouped into the fo...
By Bob Gourley A reader just brought a job description to my attention and I wanted to share it with you in the hopes that you will pass it along till the right person is found for this very important position. From: http://ctolink.us/OYJgbf Chief Cyberinfrastructure Security Officer Internet2® i...
By Bob Gourley The Intelligence and National Security Alliance (INSA) is a virtuous firm I have personally volunteered with for almost a decade. I believe in the value they add to the discourse on matters of national security importance and also in cyber security issues. The cyber council of INSA is...
By Ryan Kamauff Here are the top cyber news and stories of the day. Army defends its mobile device security plan – “The Department of Defense’s inspector general has reposted and updated a report critical of the Army’s shortcomings in handling cybersecurity for commercial mob...
By RyanKamauff Here are the top cyber news and stories of the day. IG: VA faces challenges in moving to paperless claims processing – “Problems with the Veterans Benefits Management System are hindering Veterans Affairs Department efforts to eliminate its backlog of disability claims and...