Author Archives: Jeffrey

In defense of Incrementalism (in vulnerability management)

Most of the vulnerability management programs I’ve encountered suffered from analysis paralysis—the infosec team had reams of data (or multiple spreadsheets) on their vulnerabilities but couldn’t make progress because they couldn’t decide where to start. Questions I frequently hear include:… (read more)

Posted in Cybersecurity | Tagged , | Leave a comment

Off the Shelf: February 2024 (Newbery cleanup)

Attending the ALA event at Loganberry in January to hear the Newbery awards reminded me of my goal to read all the Newbery Medals and to sample the more interesting Newbery Honors, so I loaded up February with Newberys. Many… (read more)

Posted in Other Thoughts | Tagged | Leave a comment

Another post on too many meetings . . . at the wrong times

A recent post in the Journal titled “Is It Ever OK to Have an 8 a.m. Meeting?” got me thinking. Now, I’m not going to quote from any study or point you to some paper that backs up my habits.… (read more)

Posted in Management, Other Thoughts | Tagged , , | Comments Off on Another post on too many meetings . . . at the wrong times

Threats and Risks . . . and Vulnerabilities

During an interview last week I was asked to define the difference between a Threat and a Risk using language that a non-technical CEO would understand. I gave a good answer and made it to the next round. And then… (read more)

Posted in Cybersecurity | Tagged , , | Comments Off on Threats and Risks . . . and Vulnerabilities

Off the Shelf: January 2024

I had the opportunity to watch the ALA awards broadcast at Loganberry Books this year and that filled up my to-be-read stack, even more so than usual. Simon Sort of Says I went to Mac’s Backs one Saturday in late… (read more)

Posted in Other Thoughts | Tagged , | Comments Off on Off the Shelf: January 2024

Off the Shelf: December 2023 (resiliency)

While meaningful to me, I don’t know that my December readings would make sense to many people. In no particular order: Adventures with a Texas Naturalist Bedichek is one of Texas’ great persons of letters, in the style of Thoreau.… (read more)

Posted in Other Thoughts | Tagged , , | Comments Off on Off the Shelf: December 2023 (resiliency)

Cybersecurity for Small Businesses, Part 1: Make it Harder

This is the first of six posts on Cybersecurity for small businesses. Click here for the Introduction and links to the others. Make it Harder Make the attacker’s job harder, starting with passwords. Strengthen your passwords The goal here is… (read more)

Posted in Cybersecurity | Tagged , , | Comments Off on Cybersecurity for Small Businesses, Part 1: Make it Harder

Cybersecurity Presentation for Small Businesses: Introduction

This series of posts started as an outline for a short presentation on Cybersecurity for small businesses that I would eventually give multiple times over a couple of years in the northeast Ohio area. At the time, I was advised… (read more)

Posted in Cybersecurity | Tagged , , | Comments Off on Cybersecurity Presentation for Small Businesses: Introduction

Off the Shelf: November 2023 (exploration)

My curiosity in a wide range of topics shows up in my reading lists. I’m not always able to explain why something is on the list, but I’m working on doing better since I believe the “why” can be relevant… (read more)

Posted in Other Thoughts | Tagged | Comments Off on Off the Shelf: November 2023 (exploration)

Compass quote

compasses only tell the directions,not which one to follow Maclean, N. (1992). Young men and fire. Univ. of Chicago Press. Leaders choose which direction to follow. They can make that decision any number of different ways, but the leader makes… (read more)

Posted in Other Thoughts | Tagged , | Comments Off on Compass quote