2015-06-12

again, known unknowns and unknown unknowns

This week's #sthlmcrimsymposium was fun and valuable. This being my 2nd time, I had managed expectations better.

Sure, linking outdoor violence to substance abuse is different from preventing compromise of valuable information. But there are also similarities. There was a poster session about Situational Prevention in the context of incident response. Infosec has so much to learn from mature fields, such as Criminology.

Managing known unknowns. Constructing unknown unknowns. We're all in that business.

2015-06-01

on the unsinkable and the unthinkable

It started as a jolt on the lower deck

Swedish song-writer Mikael Wiehe captures bewilderment, affection, anxiety, hope, pride and despair during the final hours of the RMS Titanic. 103 years later on, this spectacular disaster offers lessons for those of us working with risk and security. Using the power of analogies, we can help our stakeholders approach difficult subjects in persuasive ways. While doing the best we can to protect our systems, we must admit that they are by no means unsinkable.
20170624