Ten years, how time flies.
Ten years, a decade, it’s a very long time, and yet passes in the blink of an eye. I joined Tenable ten years ago, and somehow they have not tired of me yet. I had known Ron Gula and Jack Huffard for a few years before I joined, we had ... Read More
Finally, the results of the employer support survey
Delayed by holidays and the madness of the past month, but here it is.First, the very short summary: most of us in the security realm are pretty lucky to be where we are during the pandemic. Most of us have employers who have been at least somewhat supportive and flexible ... Read More
Quotable Quotes
Today I'll share a few of the quotes received in the comments section of the survey. Let's start with this commentary on PhD and advanced degrees: "A PhD is a full-time job, not an extension to college/school. During my PhD I've published more papers, gotten more patents & more press ... Read More

Uncommon Sense Security 2020-03-17 16:46:00
Well, it says a lot of things, and as expected it answers some questions and asks more. First, thank you to everyone who completed the survey and shared it, there are over 400 responses so far and I plan on leaving it open for a few more weeks. I will ... Read More
Blog-ified Tweetstorm
I dumped this on Twitter as a tweetstorm, but it is worth sharing here in one place. Those who have followed me for a while have probably noticed that I rarely get technical here anymore. My world, and world view have changed. I still play with stuff, but it tends ... Read More

Doing it wrong, or “us and them”
I was arguing with the wiring in a little RV over the weekend and it was the typical RV mix of automotive wiring, household wiring, and What The Expletive wiring. I fell back to my auto mechanic days and set about chasing the demons through the wires. Basic diagnostics: separate, ... Read More

I thought everyone knew this by now
But apparently not. I just saw some “Security Awareness Training” that gave the bad old advice of “look for the padlock” in your web browser. Here’s my answer to that: In a world where most of us face a constant threat from phishing we need to better educate folks, and ... Read More
Where’s Jack?
As I mentioned in a post earlier this year I am traveling extensively this year, connecting and reconnecting with a lot of people. And thanks to a lot of wonderful people inside and out of the hacker and security communities I am doing very well after a rough few months ... Read More
On loss and responsibility
We have lost more great figures in our world of InfoSec, and we are diminished by their loss. Spaf has written eloquently on the passing of Kevin Ziese, Howard Schmidt, and Becky Bace. I never met Kevin, and I only met Howard a couple of times, but I know of ... Read More
A few words about ovarian cancer
Cancer sucks. The number of people who are touched by cancer is terrifying, it is rare to find someone who hasn’t had friends or family attacked by cancer if they’ve avoided it themselves. Sometimes, as with my bladder cancer, it’s not that bad- for me I get a rather uncomfortable ... Read More