David Laceys IT Security Blog

Recent Posts

  • The world in 2018 (or not)

    David Lacey 22 Dec 2013
  • Now I'm not saying that I get everything right about the future. But I can certainly spot the excesses of other futurists. The latest example is IBM's predictions for the next five years. The most ...

  • Predictions for 2014

    David Lacey 21 Dec 2013
  • So what will 2014 hold for cyber security professionals? Will it be something new or more of the old? The answer is bit of both. We have all reached a crossroads in the way we manage security. Some ...

  • Predictions for 2013 - what did I get right?

    David Lacey 15 Dec 2013
  • It's the time of year when we reflect on our progress (or failures) over the last year and anticipate the challenges of the coming year. Last December I made five predications for 2013. How well ...

  • Qualys - A force to be reckoned with

    David Lacey 26 Nov 2013
  • Last week I attended a sneak preview of the latest Qualys product road map. I was impressed, not so much by the functionality of the products - which is not especially original - as by the ambition ...

  • Security in a Land Down Under

    David Lacey 26 Nov 2013
  • For most of this month I've been touring Australia with the excellent CSO Perspectives Roadshow, presenting on the subject of the future of cyber security. It's been a great opportunity to meet ...

  • Jericho Forum declares success

    David Lacey 23 Oct 2013
  • It's not often that an institute decides that its mission has been accomplished, declares success and steps down. But that's what the Jericho Forum has done after a decade of evangelising the ...

  • Visions of the Future

    David Lacey 20 Oct 2013
  • I've just read an interesting report of future 2020 scenarios on cyber security put together by an esoteric institute called the International Cyber Security Protection Alliance (ICSPA). I don't ...

  • Life beyond consultancy

    David Lacey 19 Oct 2013
  • Donn Parker just copied me in on his critique of Harry de Maio's new book. For those of you who might be more Gen Y than Baby boomer I should explain that Donn and Harry were old-school, cyber ...

  • APT Protection via Data-Centric Security

    David Lacey 19 Oct 2013
  • I'll be contributing to a Webinar on APT Protection via Data-Centric Security next Thursday. Given the progressive erosion of corporate perimeter security it's about time we switched our attention ...

  • Even more on the History of BS7799

    David Lacey 16 Oct 2013
  • nthony Freed has now published the final article in his series on the true background of BS7799 on his Tripwire blog. There are real lessons to be learned from these postings. I hope that students ...

  • Business understanding of cyber attacks a decade out of date

    David Lacey 16 Oct 2013
  • This is the title of an article from yesterday's Australian Financial Review, the leading Australian business newspaper. It was written by Chris Joye, a leading economist, fund manager and policy ...

  • How to manage the risks of Advanced Persistent Threats (APTs)

    David Lacey 13 Oct 2013
  • My new ISACA book on Advanced Persistent Threats has now been published. It's an excellent guide for any Business, IT, Security or Audit Manager responsible for safeguarding critical, sensitive or ...

  • More on the history of BS7799

    David Lacey 13 Oct 2013
  • Anthony Freed has been publishing further historical information on the true background of BS7799 on his Tripwire blog. There are some important learning points from these postings. It's ...

  • Back to reality

    David Lacey 13 Oct 2013
  • My apologies for radio silence on this blog. It's been due to an exceptionally busy workload coupled with an extended holiday I'm now back with lots of views about what's going on and what's going ...

  • It was 20 years ago today...

    David Lacey 19 Aug 2013
  • Well not quite today, but at the end of September it will be exactly 20 years since the original text of text of BS7799 (now ISO 27002) was published in the form of BSI document DISC PD0003. The ...

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close