You can't secure what you don't acknowledge.SM

Thursday, June 24, 2010

Responsibility & action come from individuals not government

Being in DC and Chicago this week watching local news and observing all the bumper sticker slogans reminds me of the saddening enormity of how all this change we can believe in is impacting our country and the future of our families. The thing that stands out the most is the lack of personal responsibility and the dependence on government to handle all our woes - both in our personal lives and as it relates to information security. It's always someone else's problem....and the government can come to everyone's "rescue" such as Joe Lieberman's ridiculous "Cybersecurity (Government Growth) Bill" government growth bill. [I haven't even gotten started this...more to come].

Well, I was reading in USA Today today about how locals in Orange Beach, AL are NOT waiting on Obama or BP to protect their coastline. Instead, the local government hired engineers themselves to fix the problem. And it's working! You've got to read the story. It's very inspiring and it shows that there is hope in mankind - like these people who take the initiative to fix what's happening in their area. No big government needed to do that.

Wednesday, June 23, 2010

Dario Franchitti and I

As many of you know I'm a motorsports nut -both as a driver and a fan. This provided the influence for my Security On Wheels logo. Well, after my speaking session at Gartner yesterday I headed out of DC early this morning. Unfortunately, we had a long flight delay heading over to Chicago where I'm taking a class but the wait and the hassle were worthwhile. I got to meet and briefly chat with Indy Car driver Dario Franchitti (this year's Indy 500 winner and super nice guy) at O'Hare:

I've had the pleasure of meeting Bob Varsha, now Dario. Who will I run into next? I'm kinda hoping for Scott Pruett or Michael Schumacher. :-)

Sunday, June 20, 2010

Like Metasploit? You've gotta check out Metasploit Express.

Here's a piece I just wrote for where I talk about Rapid7's new Metasploit Express. It has its kinks and was a bit finicky to use but Metasploit Express will no doubt provide a breath of fresh air for pen testers - and now, less technical auditors - all around.