Pragmatic CSO Podcast #10 - It's So Easy

Submitted by Mike Rothman on Wed, 2008-04-16 09:42.
::

It's Easy
Today I go on a bit of a tirade. Basically, just coming back from RSA - I'm a bit sensitive to vendor claims vs. reality. I've been pounded by a webcast announcement from AlertLogic for the past week about "PCI Compliance made Easy." After I cleaned the puke off my desk, I needed to rant a bit. So this week's podcast is a little different. All rant, no filler.

Nothing about security is easy. Regardless of what the vendors want you to believe.

Here is the invite, so you have some context... The event is today, so you can figure out just how "easy" security is.




=============================================
VENDOR WEBCAST: Simple & Affordable PCI Compliance with Alert Logic
=============================================
WHEN: LIVE! April 16, 2008 at 2:00 PM EDT (1800 GMT)
SPEAKER: Nick Ignatiev, Sales Engineer, Alert Logic
SPONSOR: Alert Logic
http://go.techtarget.com/r/3435132/6133928


ABOUT THIS VENDOR WEBCAST:
In this webcast, you will discover:

* An easy solution for addressing the PCI DSS requirements for
intrusion protection, vulnerability management, and log management
* Strategies for compliance that don't strain employee or budget
resources
* The ways that your company can pass an audit quickly and easily
* And more...

 

Running time: 6:46

Intro music is Jungle and I sign off with Linda Rondstadt's classic "It's So Easy" because at least something in this world should be easy. I was going to use a Guns song "It's So Easy," but the lyrics are pretty hardcore and it may have been a bit much for our younger listeners out there.

Direct Download: 10_Pragmatic_CSO_Podcast_10.mp3

SubscribeSubscribe in a reader

Photo credit: Mikey aka DaSkinnyBlackMan (his alias - not mine)


PCI Marketing Made Easy
Submitted by Sam Van Ryder (not verified) on Wed, 2008-04-16 20:24.

Mike,

I obviously have to post a respose to this, of course. While (as a long time follower) I understand your view on this type of messaging, it was not our intent to make people believe we had a magic bullet for PCI. We certainly were trying to drive attendance to a webcast which we think is valuable information for people faced with PCI. If you talk to anyone in our company - from the CEO to the VP of Marketing to the sales folks here - nobody will tell you we can make people compliant. We do however understand where we fit in the PCI story - and we do have a great way to address those specific (and complex) points in a somewhat easy manner. As you pointed out, it was really just a headline anyway. It got your attention, after all. Our intentions were good, if that counts.

I'll be sure to send you some barf bags from my next flight. I hate it when my desk is sticky from puke. :-)

Sam

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options