Osama SalahUsing Capabilities to escape Product-Centric ThinkingIn information security, it is difficult to get the balance right, any balance.Apr 24, 2018Apr 24, 2018
Osama SalahSingle Cause Fallacy and the Evil of Root Cause ObsessionWe are frequently told or are telling others that our job as defenders is just not fair. While we have to secure everything hackers have it…Apr 23, 2018Apr 23, 2018
Osama SalahThe Security Awareness Debate can be settledI recall a debate in 2006 between security giants Bruce Schneier and Marcus Ranum in 2006. That was around the time where I had started…Apr 23, 2018Apr 23, 2018
Osama SalahRisk Heat Maps and the Evil of Best PracticesI was recently preparing a presentation for a conference advocating for quantitative risk management specifically for FAIR. It had all the…Apr 23, 2018Apr 23, 2018