This is my third (and thankfully to most readers, last) post about a class at I gave at George Washington University earlier this year. The professor, Dr. Robert McCreight, invites me to be a guest lecturer on cyber-security from time to time. I posted a copy of my slides in the previous two posts and do [...]
Tags: cyber-security·George washington university·John Boyd·OODA·stigmergic·usaf·wake forest university
Previously, I had written about a class at George Washington University to which the professor, Dr. Robert McCreight, invites me to be a guest lecturer on cyber-security from time to time. I posted a copy of my slides then and do so again here: George Washington University Slides on Cyber-Security I wanted in this entry to [...]
Tags: cyber-security·department of transportation·fisma·George washington university·robert mccreight·situational awareness·whack-a-mole
Since the latest set of releases associated with US diplomacy through WikiLeaks there has been endless commentary on all aspects of the leaks. I have read through many of the comments and columns and been thinking about whether I had any particularly new insights to offer. My conclusion is that I do not and therefore [...]
Tags: cyber-security·OODA·wikileaks
I am finishing up grading final papers for my Syracuse University class on security policy. Each semester I find I learn a great deal from reading the papers and interacting with the students about them. I have drawn three conclusions about policy creation from my past experience at the Department of Transportation, modified slightly from [...]
Tags: cyber-security·department of transportation·measurements·policies·syracuse university
During the time I served as the CIO at the US Department of Transportation when I wanted to annoy my Chief Information Security Officer (CISO) of the CISO staff, I would point out that in my opinion there were two things wrong with computer security within the Federal Government. First, we put security in charge. [...]
Tags: cyber-security·John Boyd·OODA·security
Last month I was the keynote speaker at the University of Maryland University College 2010 Annual Cybersecurity and Homeland Defense Symposium and Job Fair, http://www.umuc.edu/securitystudies/cybersymposium_agenda.shtml. A few people asked me to post my presentation, but I have found that my current job as the COO at Powertek Corporation has caused me to miss many of [...]
Tags: cyber-security·homeland security·jobs·joke·milliion dollars·steve martin·University of Maryland·University of Maryland University College
I was pleased to be asked to be part of a webinar sponsored by Government Executive this Thursday at 2:00pm EST and even happier when Pat Howard, the CISO from the Nuclear Regulatory Commission accepted an invitation to join me. The webinar, moderated by Adam Ross, the Managing Editor from the SANS Institute, will focus [...]
Tags: cyber-security·government executive·nrc·nuclear regulatory commission·powertek corporation·SANS Institute·secure federal systems·webinar
I was lucky enough to be part of a panel discussing cyber-security at a Fedscoop conference Wednesday, October 14, at the Newseum. The agenda for the conference is here: http://fedscoopevents.com/agenda.php. I thought it might be useful to summarize my general points for those who were not able to attend. The theme of the conference was [...]
Tags: cyber-security·federal cio council·fedscoop·goldy kamali·newseum·rob carey·security metrics task force·vivek kundra
The lead story in the July 1, 2009 issue of CIO Magazine deals with cyber-security. The Editor’s Letter headline is: “Whac-A-Mole” Approach to Security and contains the following paragraph: “It’s hard to imagine more appropriate imagery for our cover story (“Moving Target”) about the widespread frustration with mounting cybersecurity threats and the lack of an [...]
Tags: cio·cio magazine·csc·cto·cyber-security·obama administration