Stay Classy, San Diego!

Stay Classy, San Diego!

What was popular in January? We’re already one month down in this new year and most of us have our sites set on RSA Conference in three weeks. Let’s talk infosec!

Here are the five most popular posts from last month:

  1. Myth Busting with Ben Tomhave and Corporate Responsibility with Ben Tomhave took the top two spots this month. Ben Tomhave and I got into a fun discussion over Twitter that ended up going in two directions. First, can merchants self-assess, negating the need for a QSA-lead merchant assessment?
  2. Intelligence Driven Security. The latest Security for Business Innovation Council report is out, and one key indicator is that we have tuned our systems to support compliance, not security. Read this post to learn why this is a fatal flaw in your thinking.
  3. Where is your Chaos Monkey? This one is in the top five for the fourth month in a row! I absolutely love that this concept is being discussed as a reality in Information Security circles. Is your company’s culture prepared to deal with incidents? Netflix has one, where’s yours?
  4. We Must Hunt. In line with some of the other themes this month, I discuss the need for hunters in your information security group. If you organize your department around the “sit around and wait for an incident” plan, you end up waiting for bad stuff to happen and try to catch it before it gets worse. Actively looking for threats inside your network will shorten your kill-chain exposure.

Thanks for stopping by!

This post originally appeared on

Possibly Related Posts: