Writing
Posts on leadership, cybersecurity, and AI governance from the CISO seat at the National Football League.
Implement DNS Filtering
Deploy DNS filtering solutions to enhance your organization's cybersecurity defenses against malicious websites and content.
Application allowed/denied lists
Use application “allowed” lists to ensure only approved and known applications can run on your systems.
Digital Forensics Readiness
Ensure your organization is prepared for digital forensics investigations by maintaining proper logging, preserving evidence, and having trained personnel ready to analyze…
Quantum-Safe Cryptography
Prepare for the future of quantum computing by exploring quantum-safe cryptography. Traditional encryption methods may become vulnerable, so adopting quantum-resistant algorithms…
“Cyber Insurance Considerations”
Evaluate and understand your organization's cyber insurance coverage comprehensively. Ensure it covers not only direct financial losses from cyber incidents but also expenses…
“IoT Device Security”
Ensure robust security measures are in place for Internet of Things (IoT) devices used within your organization.
Physical Security Awareness
Promote awareness among board members about the importance of physical security in cybersecurity.
Implement Container Security Best Practices
As organizations increasingly adopt containerized applications, it's important to implement container security practices.
Code Resilience & AppSec
A few months ago I was interviewed by Cycode to share my thoughts on the future of code resilience and application security.
Implement a Formal Cybersecurity Risk Management Program
Develop and implement a formal cybersecurity risk management program to identify, assess, and mitigate potential risks to your organization's information assets.