Following the Wh1t3 Rabbit - Practical Enterprise Security

Enterprise Security organizations often find themselves caught between the ever-changing needs of the agile business, and the ever-present, ever-evolving threats to that business. At the same time – all too often we security professionals get caught up in “shiny object syndrome” which leads us to spend poorly, allocate resources unwisely, and generally de-couple from the organization we’re chartered to defend. Knowing how to defend begins with knowing what you’ll be defending, why it is worth defending, and who you’ll be defending from… and therein lies the trick. This blog takes the issue of enterprise security head-on, challenging outdated thinking and bringing a pragmatic, business-aligned, beyond the tools perspective … so follow the Wh1t3 Rabbit and remember that tools alone don’t solve problems, strategic thinkers are the key.

Rafal (Principal, Strategic Security Services)

Surfer v. Vending Machine Repairman: Conditional Probability [guest post]

This guest-post is brilliant.
Simply put, it's better than my original piece, and a fantastic-must-read if you're in enterprise security and are getting senior executives asking about the 'big, bad, current events' that are taking place around them. Heath's masterful analysis, related to real-world enterprise experience is something I recommend you all read, print, and read again later when you're having "one of those days"...

Sharks vs. Vending Machines - Irrational Fear as Information Security Tool

What do you suppose is more lethal, the shark or the vending machine? Unless you've heard this statistic before you are likely to guess the shark ...and you'd be wrong just like I was the first time I heard this question. Sharks are far less lethal, statistically speaking, than vending machines ...but it's all about the situation you're in. What in the world does this have to do with Information Security? Read this post and find out ... one of my favorite posts in a long time...

About the Author(s)
Follow Us
Twitter Stream

Community Announcements
HP Blog

Technical Support Services Blog

The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation