John MasseriniinThe StartupWhen Security Metrics Miss The Point | Chronicles of a CISOBefore we begin, I’m going to ask your indulgence for a moment while I share something a bit personal. I know it may seem a bit odd at…May 9, 20192May 9, 20192
John MasseriniTwo-factor Authentication Is Not Dead | Chronicles of a CISOI’ve had just about enough of the fear mongering and lazy ‘reporting’ that’s been in the press recently around how two-factor…Apr 1, 2019Apr 1, 2019
John MasseriniFree NIST CSF Maturity Tool | Chronicles of a CISOIn my previous post, ‘My Three Wishes for 2019’, I had wished that we all find a way to give back to the industry, even a little bit. In…Jan 28, 2019Jan 28, 2019
John MasseriniMy Three Wishes for 2019 | Chronicles of a CISOIt’s the end of the year and like all of you, my news feed has been filled with ‘Predictions for 2019’ to such a point that I basically…Dec 31, 2018Dec 31, 2018
John MasseriniThe Identity Maturity Calculator | Chronicles of a CISOSince writing The Identity Catechism a few months back, I’ve had a number of requests for advice or suggestions on how to measure the…Dec 19, 2018Dec 19, 2018
John MasseriniFahrenheit 451 — Security Research Edition | Chronicles of a CISOIn 1998, the US passed The Digital Millennium Copyright Act (DMCA) in an effort to enact several of the requirements of World Intellectual…Nov 12, 2018Nov 12, 2018
John MasseriniThe Identity Catechism: Fifteen questions every CISO should ask about their Identity program |…The evolution is underway. Our infrastructures are borderless, our critical data is cloud based, and our users work from anyplace on the…Oct 16, 2018Oct 16, 2018
John MasseriniA Contrarian View of the NIST Digital ID Standards | Chronicles of a CISORecently, while attending a conference in DC, I was part of a discussion around the new NIST Digital Identity Guidelines (SP 800–63) and…Jul 19, 2018Jul 19, 2018