25 months in: What I’ve learned starting a cybersecurity company
31st July 2019
This is the second part in a series. If you haven’t read the 18 month one, you should. It’s here: https://fractionalciso.com/18-months-in-what-ive-learned-starting-a-cybersecurity-company/ After re-reading my 18-month blog post I couldn’t believe how much has changed with our business and with me in just six months. Okay, seven months but I started writing this post at the…
-- READ MORE
vCISO video
8th July 2019
Have you ever wondered what a vCISO is or why you should hire one? Now in just 71 seconds with this vCISO video you can learn everything you have ever wanted to about what a Virtual CISO is and how they can help your organization. Want to watch the vCISO video on YouTube? Check it…
-- READ MORE
IoT Platforms: The Top Six
30th May 2019
I recently finished a small consulting engagement where the client asked me about if they should build an IoT platform. I’ll give you the same advice I gave them, but for free. “Don’t do it.” Let’s talk about the underlying challenges with today’s IoT platforms. It’s a very weird market. Think of it this way:…
-- READ MORE
Fractional CISO in the news
3rd April 2019
We’ve gotten some great first quarter 2019 press exposure covering a range of cybersecurity topics. First, our article covering the Four Signs You’re Ready for a Virtual CISO was published by the Security Ledger in February. We walk you through the key reasons for choosing a vCISO including because of customer input, regulatory requirements, mergers…
-- READ MORE
Meraki Review: Is it the right Security Appliance for your organization?
27th March 2019
You may be considering making changes to your network or starting a new company or branch office. What should you do to minimize your organization’s cybersecurity risk? When we moved into a new office, I was responsible for setting up the network. This included selecting the right network equipment for our organization. As a security…
-- READ MORE
Pen Test. Do I need one?
13th March 2019
“Yes, but…” That is the right answer 95% of the time. Almost every organization needs a penetration test or pen test. Organizations with mature security programs don’t need to ask the question. They already know the answer based on their program and plan. Organizations that are asking that question are operating from the right mindset….
-- READ MORE
WiFi Pineapple: Can Still Compromise Your Network in 2019
30th January 2019
Suppose you see a few people in a rented car, parked across a street at a hotel, next to an office. Does this sound suspicious to you at all? Not at all! Right? In a real-life version of this story, those people were attempting to perform a cyber-attack on the Organization for the Prevention of…
-- READ MORE
Cybersecurity Breach Bankruptcy: It Does Happen
23rd January 2019
“Companies don’t go out of business due to a cybersecurity breach,” say several well-versed cybersecurity experts. When I give them counter-examples to disprove their point, they list it as an aberration. Here’s a less catchy but more accurate statement: “Large companies usually don’t go out of business due to a large cybersecurity breach. They can…
-- READ MORE
NIST Cybersecurity Resources During the Shutdown
9th January 2019
They did what? During the government shutdown, which has now gone on for over two weeks, the clever folks at the National Institute of Standards and Technology (NIST) took down many of the resources that the cybersecurity community relies on to help protect society. The NIST Cybersecurity department has indispensable frameworks and other tools that…
-- READ MORE