On 10 July 2008 the CGEIT Certification Board awarded Jon Espenscied the Certified in the Governance of Enterprise IT (CGEIT) designation. In addition to this Jon also has CISA, CISM, and CISSP in his signature block.
» Joel Scambray Shares His Thoughts on Security Assessment Services - July 25, 2008Joel Scambray, Co-Founder and Managing Member of Consciere shares his thoughts on security site assessment services at Search Security on TechTarget. View the FAQ and hear the podcast on Search Security Channel.
» Black Hat Attendance - July 25, 2008Joel will be in Las Vegas for a couple of days during Black Hat. if you would like to schedule some time for meetings, drinks, or some Blackjack let him know.
» How To Sell Security - July 25, 2008Bruce Schneier recently posted an article on CIO.com entitled “How to Sell Security.” In it, Bruce uses Prospect Theory to assert that the most effective way to sell security is through fear, or more ethically, indirectly bundled as part of more generic offerings. Bruce as always makes solid points, but I think overlooks a key [...]
» Quant Fever - July 25, 2008Furthering the discussion of applying quantitative thinking to information security, I thought I would share some influential resources (with no particular order or organization). How To Measure Anything provides a very interesting glimpse of what applied information risk quantification could look like. In particular, the sections on confidence intervals, calibration, and Monte Carlo analysis are [...]