David Laceys IT Security Blog

Recent Posts

  • It was 20 years ago today...

    David Lacey 19 Aug 2013
  • Well not quite today, but at the end of September it will be exactly 20 years since the original text of text of BS7799 (now ISO 27002) was published in the form of BSI document DISC PD0003. The ...

  • Farewell Barnaby Jack

    David Lacey 26 Jul 2013
  • I was deeply shocked and saddened to hear about the death of Barnaby Jack, one of the most brilliant and effective security researchers I have ever encountered. He researched vulnerabilities in ...

  • The art of strategic crisis management

    David Lacey 23 Jul 2013
  • Scientific American has an interesting article "How Would the U.S. Respond to a Nightmare Cyber Attack?" based on a recent crisis exercise. It's a good question as well as a well overdue exercise. ...

  • Lessons from Software Development

    David Lacey 03 Feb 2013
  • I've often pointed out that information security management has become far too slow, bureaucratic and process driven. It's because of the backward-looking culture created by governance, standards ...

  • Big Data means Big Security

    David Lacey 26 Jan 2013
  • You can't go through the day without reading something about Big Data. There are full page advertisements in newspapers, conferences devoted to the subject, and an array of new or rebadged products ...

  • Ditch the Triangle and use more technology

    David Lacey 20 Jan 2013
  • Big Data might be the big thing this year, but it's just one step in the evolution of enterprise information systems. Each year they become more powerful. As do the capabilities of their users. ...

  • A poem for Christmas and New Year

    David Lacey 26 Dec 2012
  • Every year Alan Stockey, a well known London banking security professional, sends me a Christmas poem with a security theme. It's a little late for Christmas Day, but then so is the snow. Day Zero, ...

  • Predictions for 2013

    David Lacey 24 Dec 2012
  • What will 2013 hold for information security professionals? Certainly a lot more serious incidents as we've been incubating a raft of potential crises for the past two decades. But what ...