KWM - KWM

August 22, 2024

Your SIEM is only as valuable as you have time to ask it questions.

Do you have time to identify and ask the right questions? And most importantly, do you have time to sift through the results to find answers?

Twitter Facebook LinkedIn

Assorted links 2025-03-09

March 9, 2025

1. Crafty Camel, a threat targeting the UAE, from Proofpoint

The more labels you have for yourself, the dumber they make you. Permalink

March 8, 2025

One of Paul Graham’s best.

I’ve long viewed incidents as one of an organization’s very best tools for measuring everything from cybersecurity effectiveness, to overall operational maturity. Unsurprisingly, I’d also recommend using incidents to define and understand security outcomes (i.e., whether your costly security-related investments are getting the job done).

The SEC should require disclosure of cybersecurity controls

January 17, 2025

8-K filings for material cybersecurity incidents should require disclosure of all cybersecurity controls (software and services) in place when the event occurred.

by Keith McCammon

You May Also Enjoy

Assorted links 2025-03-09

The more labels you have for yourself, the dumber they make you. Permalink

Defining security outcomes

The SEC should require disclosure of cybersecurity controls