You Build It, You Secure It

A Case for Collaboration

Web Application Security: Integration or Extinction

REVOLUTION and EVOLUTION: Fully Homomorphic Encryption

The Differences Between Data, Information, and Intelligence

Security Through Inclusion

INDEPENDENCE & OBJECTIVITY: Fundamental Best Practices for Cybersecurity Assessments

The Difference between Data Security and Privacy

Train Like You Fight: Cyber Workforce Alignment

Security through Planned Destruction— Using the Cloud to Reduce APT Risk

Engineering and Vulnerability Management

Author(s):

Barbara Bouldin, Director of Technologies Research, SJ Technologies

John Willis, Senior Director, Global Transformations Office, Red Hat

Industry & Business Best Practices

Author(s):

Chris Castaldo, Senior Director of Information Security, 2U

Engineering and Vulnerability Management

Author(s):

Helen Korobko, Vice President of Technology Solutions, Svitla Systems

Engineering and Vulnerability Management

Author(s):

David W. Archer, PhD, Principal Scientist, Niobium Microsystems and Galois, Inc.

The Threat and Threat Intelligence

Author(s):

A.J. Nash, Vice President of Intelligence, ZeroFOX

Cybersecurity Policy

Author(s):

Gary Merry, CEO, Deep Run Security Services, LLC

Larry Letow, CEO, U.S., CyberCX

Cybersecurity Policy

Author(s):

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Privacy

Author(s):

Mark R. Heckman, Ph.D., CISSP, CISA, Professor of Practice, Shiley-Marcos School of Engineering University of San Diego

Training and Workforce Development

Author(s):

Chad Carroll, Chief Strategy Officer, Chiron Technology Services, Inc.

Engineering and Vulnerability Management

Author(s):

Chris Rutherford, CISSP, CAP, Senior Strategic Cyber Consultant, LMI

David K. Shepherd, CISSP, PMP, Senior Consultant, LMI

From the Fall 2017 Issue

Leading to DevOps In 2006 Werner Vogels, Amazon’s CTO, said in an interview with the Association for Computing Machinery (ACM) that developers at Amazon don’t throw software over the wall. His famous quote was “You … Read more

From the Summer 2017 Issue

In my many years of working in cybersecurity, I’ve found the only thing that can truly secure an organization is collaboration. The most important part of “people, process, technology” is the people. No one in … Read more

From the Summer 2017 Issue

Web applications have become a primary vulnerability for modern business Today, almost every enterprise produces, leverages, transacts business or depends upon web or Cloud enabled software. As a result, web applications have become the number … Read more

From the Summer 2017 Issue

More and more computation is being outsourced to public clouds. Cloud computers can be just as vulnerable as any other computer, putting the privacy of sensitive data at risk. As nation-state cyber weapons become increasingly … Read more

From the Spring 2017 Issue

Perhaps the most difficult part of the transition from public to private sector for cyber professionals coming out of the US intelligence community (IC) is one of language. Conversations regularly take place in industry settings … Read more

From the Spring 2017 Issue

It’s not the number of people in your security department, but the number of departments into security, that will make you secure. Creating a secure business is not about replacing part of your business with … Read more

From the Spring 2017 Issue

Cyber professionals generally know one thing – the cyber environment is constantly shifting. New business requirements, end-user needs and technologies change. New devices and applications create or remove vulnerabilities on a daily basis. Attackers respond … Read more

From the Winter 2017 Issue

Data Security and privacy are related, but distinct concepts. That may seem obvious to many people, but relatively few can clearly explain the difference. Privacy, moreover, is impossible without data security. This idea does not … Read more

From the Winter 2017 Issue

Over the past few years, industry surveys have highlighted the demand for technically skilled cybersecurity professionals, exposing a fundamental workforce shortcoming. The way industry identifies, trains and validates cybersecurity skills is outdated and misaligned. If … Read more

From the Winter 2017 Issue

« June 2026 »

Many network attacks gaining attention today are advanced persistent threats (APT) that aim to maintain access for long-term data exfiltration. The advent of cloud infrastructure provides a new avenue of defense against persistent network attacks. … Read more

Events Calendar

Mon 15

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.