I have talked about the Psychology of Security as penned by Bruce Schneier (2019 post) – where he outlines the effect of the person trying avoid spending money if it is a risk to lose money, whereas in a casino we are willing to risk money to make more money. But in a company with … Read more
If you have a company that you own, and have some computers and other systems on a network, are you in charge of that network? Ultimately maybe you are _responsible_, but are you in charge of it? Or is it the computer users? or any user with a phone and device on the network? Is … Read more
There are many examples of high Cybersecurity risk tolerance – which show the executives not paying attention to Cybersecurity professionals until it is too late. Darkreading has another article on Cybersecurity burnout. The issue is the long hours many Security professionals have to perform and the general thankless jobs as they try to convince executives … Read more
What if people took vaccines with Inoculation rates of the cybersecurity industry? So the inoculation rates of a typical vaccine was and is 90% – 95% and that is how most of the old diseases were actually eradicated. My point is that what if people treated Cybersecurity like they should we would have less people … Read more
Not everyone understands all of the complex pieces and the economic ramifications of them. What makes this decision so difficult to require an owner to spend at least 3-4 hours a week on a topic which will not make any money, but will just help you keep running your business. In fact this “expenditure” of … Read more