🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

I am continually surprised by the number of times people ask me if I use ghostwriters or AI. I don't - I steadfastly refuse. I discuss why in my latest Dark Reading piece: darkreading.com/remote-workfor…

From the SOC to Everyday Success: Data-Driven Life Lessons from a Security Analyst: securityweek.com/from-the-soc-t…. My latest in SecurityWeek explores what life lessons the security domain may be able to teach us.

Security organizations should be meritocracies. Since actions speak louder than words, in my latest Dark Reading piece, I offer five tips for encouraging a security culture based on achievements: darkreading.com/cybersecurity-…

AI in the enterprise: cutting through the hype and assessing real risks - I discuss in my latest SecurityWeek piece: securityweek.com/ai-in-the-ente…

Isn't it time we promote security talent from within? Why don't we? Why should we? I discuss in my latest Dark Reading piece: darkreading.com/cybersecurity-…

People often ask me how cybersecurity professionals can write and publish on a regular basis. I offer 10 tips in my latest Dark Reading piece: darkreading.com/cybersecurity-…

In my latest SecurityWeek piece, I discuss five reasons why “Ambulance Chasing” and mocking harm the security profession and are never a good idea: securityweek.com/beyond-immatur…

Simplifying complexity, enhancing visibility, and empowering analysis can address key challenges in modern cybersecurity operations and investigations. I discuss in my latest SecurityWeek piece: securityweek.com/improving-seco…

Very excited to be keynoting the upcoming FS-ISAC 2024 Americas Fall Summit in Atlanta on behalf of F5. Are you curious "What Joni Mitchell Can Teach Us About Our Security Journey"? Come hear all about it at the conference! Hope to see you there! fsisac.com/events/2024-am…

What are the risks of turning a blind eye to API security? I discuss in my latest SecurityWeek piece: securityweek.com/api-security-m…

What did listening to my father as a teenager teach me about security? It has to do with considering and filtering advice. I discuss in my latest Dark Reading piece: darkreading.com/cybersecurity-…

I'm not currently working with any charlatans, but unfortunately, I have in the past. What are some tactics that charlatans employ and how can security teams spot the red flags before too much damage is done? I discuss in my latest SecurityWeek piece: securityweek.com/spotting-the-c…

How can art, literature, music, and poetry influence and improve how we approach and solve security problems? I discuss in my latest Dark Reading piece: darkreading.com/cybersecurity-…

Security vendor consolidation is a hot topic these days, and for good reason. What are some points enterprises should consider when looking towards a consolidation play? I discuss in my latest SecurityWeek piece: securityweek.com/rationalizing-…

Why is it that, regardless of the circumstances, security teams always seem to shoulder the burden of security incidents? What steps can be taken to prepare for this? I discuss in my latest SecurityWeek piece: securityweek.com/security-teams…

Can regulations actually weaken security? I would argue that they can. I explain why in my latest SecurityWeek piece: securityweek.com/the-hidden-cos… Food for thought and a discussion that I believe is long overdue.

What can Joni Mitchell teach us about cloud security? Perhaps more than you might initially think. I discuss in my latest SecurityWeek piece: securityweek.com/through-the-le…

Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy: In my latest SecurityWeek piece, I discuss how Grouch Marx's humor can teach us an important lesson around the importance of applying consistent security policy. securityweek.com/grouchos-wit-c…

In a world full of noise and promises, it’s those who consistently deliver behind the scenes who build the most respected and rewarding careers. I'd advise prioritizing doing over talking. I discuss in my latest SecurityWeek piece: securityweek.com/actions-over-w…

Rethinking Success in Security: Why Climbing the Corporate Ladder Isn’t Always the Goal. In my latest SecurityWeek piece, I discuss what I believe is an important topic regarding careers in the security field: securityweek.com/rethinking-suc…