November 8, 2006 - #152

Good Morning:
Let's talk about regime change, given that's going to be a popular topic in the media over the next few days - especially as they are recounting votes in my former home state of VA. Sometimes things happen and new blood comes into your organization. Typically it starts a period of uncertainty, disequilibrium, and general terror as every tries to figure out where they fit in the New World Order. It's easy to take your eye off the ball when that happens, but don't. Remember you (if you are a user anyway) get paid to ensure availability, protect intellectual property, minimize corporate liability, protect your brand, and ensure compliance. Even your new boss will understand that.

E-voting is going to be all the rage as the fallout from the US elections continues to hit (here [0]). I do think we are on the train to get to e-voting and we aren't going to get off, but it's going to be a bumpy ride - that's for sure. Q4 tends to be budgeting time, and here [0] is some good advice from guru James Champy about how to make your budgeting "healthy." Wouldn't equate that to a good pump from the gym or a refreshing run, but these tips do make sense.

I've also been pretty vocal about how annoying vendor "momentum" releases are. Shimel agrees here [0], though he walks a fine line as a vendor calling bunk on this practice. And speaking of asinine press releases, here [0] I give the "jackass press release" award to a vendor that just puts "Security 2.0" in the title, without mentioning it again.

Have a great day and I'll be at CSI again today, so if you happen to see me - say Hi!

Technorati: Information Security [1]

Top Security News

Pragmatic CSO [2] process, and it's really important. Because as long as there is no tangible link between security efforts and business value, your stuff will always end up on the cutting room floor. And it'll be your fault.
http://searchcio.techtarget.com/columnItem/0,294698,sid19_gci1226339,00.html [3]
Link to this [3]

http://www.darkreading.com/blog.asp?blog_sectionid=342 [4]
Link to this [4]

http://www.networkcomputing.com/channels/security/showArticle.jhtml?articleID=193500189
[5]Link to this [5]

http://www.darkreading.com/document.asp?doc_id=110084 [6]
Link to this [6]

http://www.cyveillance.com/web/newsroom/press_rel/2006/2006-11-07.htm [7]
Link to this [7]

Top Blog Postings

http://www.dailykos.com/storyonly/2006/11/7/1546/82402
[8]Link to this [8]

here [8] and still very relevant today.
http://www.stillsecureafteralltheseyears.com/ashimmy/2006/11/private_compani.html
[9]Link to this [9]

http://dcssec.blogspot.com/2006/11/security-based-pcn-marketing.html
[10]Link to this [10]

http://mycsosolutions.net/2006/11/07/physical-and-employee-security/
[11]Link to this [11]

here [12].
http://securityincite.com/blog/mike-rothman/coming-soon-the-pragmatic-cso [12]

Year-end webcast and seminar promotion
In order to support (and properly evangelize) the Pragmatic CSO, I want to be speaking anywhere and everywhere about pretty much anything related to information security. To do that, I'm making it very attractive for vendors and associations to book my talking head for the first 6 months of 2007. Check out the promotion and sign up quick, since the promotion only lasts until the end of the year, and I expect slots will be going fast.
http://securityincite.com/blog/mike-rothman/year-end-webcast-and-seminar-promotion [12]

Read yesterday's Daily Incite
http://securityincite.com/TDI-2006-11-07 [12]