As a general rule, fear, uncertainty and doubt (known as FUD in cybersecurity circles) are discouraged as an effective method of influencing audiences. Is there ever a situation where FUD is useful? Sam Curry is the Chief Security Officer at Cybereason which is a popular consulting firm. Sam writes that in small doses, FUD can …
The CISO’s Perspective 2018 – June At the University of Wisconsin–Madison, we know the higher education and research communities are, in practice and by necessity, an open and collaborative society driven by the need to share information without hindrance. Daily business practices have the potential to expose protected personal or healthcare information, sensitive or unpublished …
The CISO’s Perspective / 2017 4th Edition Prior to the Renaissance, many mathematicians, theologians and philosophers believed the Earth was the center of a finite universe and that the sun, planets and stars orbited around it. In 1543, the Polish astronomer Nicolaus Copernicus published a thesis in which introduced a radically new idea that changed …
The CISO’s Perspective / Special Edition Over the last several weeks the UW–Madison Cybersecurity Operations Center has observed two significant events along with several minor to important episodes which should cause all of us to pause and ask ourselves the following question: What should I be doing to keep my data and our information systems …
The CISO’s Perspective / Special Edition Every once in a while I like to point out one of the teams in the Office of Cybersecurity and present something newsworthy. Today I want to highlight the accomplishments of the Enterprise Systems Security domain led by Christine Peterson. Over the last year the Human Resources System underwent …
The CISO’s Perspective “It’s not important because it’s policy, its policy because it’s important.” — Gary Declute After working on it for about a year, we are in the end stages of walking the Cybersecurity Risk Management Policy through the emerging IT Governance structure. And, with great hope and anticipation, we should have it published in …
The CISO’s Perspective There’s an inherent dilemma in effectively managing cybersecurity: IT organizations must dedicate the time and focus required for long-term strategic planning while maintaining the agility to meet evolving threats and take advantage of emerging technologies. Add in the ongoing need to review and revise strategic plans to reflect those changing risk and …
This is a re-run of an article I wrote for Security Current which was based on a presentation I delivered at the IQPC Cybersecurity in Higher Education Conference in March of this year. As the flagship campus in the UW System and a major research institution in a state with open record statutes that respect …