You are here
Home > Opinion

Leadership In Cyber Security: Who Takes Responsibility? – Analysis

Here's a challenging suggestion: the current global approach to cyber security clearly isn't working so outsource it to Singapore?...: [...] But who should take responsibility for leadership in cyber security? Perhaps, a country like Singapore that has invested heavily in cyber research and capacity development, should take the helm. In fact, Singapore features as the top-ranking country in the UN Global Security Index for commitment in cyber. Hence, at a time like this when

Why every CIO should retire their VPNs

I'm going to agree with the thrust of this article, but with more of a focus on the operational realities of VPNs. As a telco, I've been a provider of secure remote access, authentication, and secure gateway services to large enterprises. From a security provider perspective, the debate was always around the termination point of the VPN: 'inside', 'outside', or on a dedicated DMZ. There's no perfect answer and the decision gets more complex when you factor in mobile applicati...

Neurodiversity on the rise among career hackers

My experience is that ASD, ADHD and the other alphabet soup of neurodiverse conditions are well represented in the infosec community. What's missing is cultural diversity. It's difficult for a 20-something white male in Wisconsin to understand the thought processes of a 14 year old email Kpop fan in Seoul...: [...] In the latest edition of its annual Inside the mind of a hacker report, Bugcrowd – which connects ethical hackers to its customers to help them fix vulnerabilitie

Because IT security and the C-suite are misaligned, digital transformation increases cyber risk

In medical procedures the topic of 'informed consent' often comes up. It's the responsibility of the healthcare professional to make sure that the patient understands the risks of any procedure before giving consent to go ahead. In cybersecurity it should be the same balance between the infosec professionals and the business functions. I suspect this survey reflects the "they don't listen to us" frustration of infosec professionals and "those security guys are always trying t...

How Platforms Can Prevent Misinformation Like #dcblackout

We need a term for mass hysteria produced by hashtag. 'Tagsteria'?...: On June 1, citizens in the nation’s capital awoke to terrifying news after a night of protests. According to many Twitter users, late in the night, government security services had cut off communications and protestors had disappeared in the ensuing blackout. In the wake of federal law enforcement and National Guard troops deploying across the city to respond to protests over the death of George Floyd—sce

Brussels to focus on platforms, messaging against COVID-19 disinformation

I sometimes feel like starting analysis of articles with "When I were a lad..." but I'll resist this time. In my (last millennium) school days we used to have a lesson called 'Current Affairs' where we'd discuss what was in the news. The bit I appreciated the most was being taught to think "Why am I being told this?" and realising that the answer was usually because someone wants to sell me something (an idea, a product, a newspaper...). That cynicism has stayed with me. It w...

What’s the harm in Zoom schooling or contact tracing?

Are we all 'Digital Natives' now? This article from Deutsche Welle discusses the fallout of the rush to digital everything that's been prompted by the pandemic. On the education front it ignores the digital divide that's become apparent here in the UK between families that have been quick to take up and use the remote home schooling facilities and those that have struggled. For contact tracing the 'divide' is between centralised and on-device systems with Apple and Google pus

A New Low in COVID-19 Data Standards

Whose measurements do you trust? When data science mixes with partisan politics it becomes very difficult to trust the data and any science based on it...: The United States’ ability to test for the novel coronavirus finally seems to be improving. As recently as late April, the country rarely reported more than 150,000 new test results each day. The U.S. now routinely claims to conduct more than 300,000 tests a day, according to state-level data compiled by the COVID Trackin

How are self-proclaimed nerds handling the pandemic?

If you want a microcosm of how different cultures are handling the pandemic and a robust 'discussion' of individual freedom vs. government action, here's a discussion on Slashdot that made me smile, grimace, and appreciate my tribe. Here at Chez Glock it's pretty much life as normal (we work from my home on Zoom/Teams/Webex/Citrix...) except I haven't been outside the village let alone the country in months and my car is still on the same tankful that it had in March. How is ...

Revealed: How Britain’s profiteering spymasters ignored the country’s biggest threats like …

This article clearly has it's own axe to grind about former public servants moving into the private sector but it does raise a good point about the scope of the term 'security' and the motivations of the security agencies in issues like pandemics and climate change...: [...] It appears that no intelligence chief has ever made money working on the security threats posed by climate change or health pandemics. None also appears to have ever mentioned these threats while in offi