Column Topics

Viewing 6 reply threads
  • Author
    Posts
    • #7868
      jason
      Participant

      I’m putting together a list of column topics for next year. Keeping in mind that I’m staying roughly in the area of general information security, what would you all be interested in reading about?

    • #49598
      tturner
      Participant

      Hacking web services and/or mobile apps. 🙂

      Oh you said general information security… How about – metrics that don’t suck?

    • #49599
      jason
      Participant

      Metrics to measure anything in particular?

    • #49600
      m0wgli
      Participant

      Trying to keep within the remit of general information security. I’d be interested in reading about how to respond to incidents and what can subsequently be learnt from them, and, how to deal with insider threats.

    • #49601
      jason
      Participant

      Ok, so far we have:

      Metrics
      Incident response
      Insider threats

      What else?

    • #49602
      tturner
      Participant

      Metrics to measure the effectiveness of security program. For instance I find the number of spams blocked to be a poor metric that’s more about big numbers in a chart than any meaningful representation of how the organization is reducing risk or saving money. Good metrics are things like measuring number of incidents detected internally vs by customers, attack vectors, time to respond to incident, time to close out incident, lag time for remediating vulnerabilities, etc.

    • #49603
      jason
      Participant

      Roger that. On the list.

Viewing 6 reply threads
  • You must be logged in to reply to this topic.

Copyright ©2020 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?