#44 -WHAT COULD GO WRONG? – JOHN MILLICAN

John Millican pixWhat could go wrong?  As an information security manager, I have often been asked that question.  But, there are two ways it is asked.

The first is my preferred way.  It is a genuine effort to identify and evaluate the risk associated with the item at hand.  That is a conversation I want to have.  That is a thought process I want to encourage. Continue reading

#11 – IT’S NOT IF, NOT WHEN, BUT ‘WHAT’ ARE YOU GOING TO DO WHEN YOU’RE HACKED! – JOHN MILLICAN

John Millican pixIt used to be said “It’s not a matter of if you will be hacked.  It’s when.”  But, now it has progressed to “What?”

In other words it was not a question of whether or not you would be hacked, it was given you would be.  The real question was just when was it going to happen.  But, now that question is no longer operative.  The information security community is generally conceding that you have been hacked whether you know it or not. Continue reading

#10 – WILL CYBER ATTACKS PUSH US OVER THE BRINK? – JOHN MILLICAN


John Millican pixOn February 12th 2013, President Obama signed an executive order to promote the sharing of classified information about threats on the nation’s critical infrastructure.  One week later, Mandiant (threat detection company) released a report identifying their near certainty that a unit of the Chinese military was “one of the most prolific cyber espionage groups in terms of the sheer quantity of information stolen.” Continue reading