John MasseriniinThe StartupWhen Security Metrics Miss The Point | Chronicles of a CISOBefore we begin, I’m going to ask your indulgence for a moment while I share something a bit personal. I know it may seem a bit odd at…8 min read·May 9, 2019--2--2
John MasseriniTwo-factor Authentication Is Not Dead | Chronicles of a CISOI’ve had just about enough of the fear mongering and lazy ‘reporting’ that’s been in the press recently around how two-factor…7 min read·Apr 1, 2019----
John MasseriniFree NIST CSF Maturity Tool | Chronicles of a CISOIn my previous post, ‘My Three Wishes for 2019’, I had wished that we all find a way to give back to the industry, even a little bit. In…3 min read·Jan 28, 2019----
John MasseriniMy Three Wishes for 2019 | Chronicles of a CISOIt’s the end of the year and like all of you, my news feed has been filled with ‘Predictions for 2019’ to such a point that I basically…4 min read·Dec 31, 2018----
John MasseriniThe Identity Maturity Calculator | Chronicles of a CISOSince writing The Identity Catechism a few months back, I’ve had a number of requests for advice or suggestions on how to measure the…1 min read·Dec 19, 2018----
John MasseriniFahrenheit 451 — Security Research Edition | Chronicles of a CISOIn 1998, the US passed The Digital Millennium Copyright Act (DMCA) in an effort to enact several of the requirements of World Intellectual…7 min read·Nov 12, 2018----
John MasseriniThe Identity Catechism: Fifteen questions every CISO should ask about their Identity program |…The evolution is underway. Our infrastructures are borderless, our critical data is cloud based, and our users work from anyplace on the…13 min read·Oct 16, 2018----
John MasseriniA Contrarian View of the NIST Digital ID Standards | Chronicles of a CISORecently, while attending a conference in DC, I was part of a discussion around the new NIST Digital Identity Guidelines (SP 800–63) and…6 min read·Jul 19, 2018----