Blog

John McAfee

John McAfee

Here is a brief article on a few predictions John McAfee, the creator and a leader in security, has for the upcoming year.   As always, regardless of whether one likes him personally of professionally, he is usually spot on.

http://www.csoonline.com/article/3155572/internet-of-things/john-mcafees-3-major-cybersecurity-predictions-for-2017.html

Despite what defenses an IT department or individual may put into place today, they typically fall very short of offering  any real protection from attacks and offer little in the way of minimizing vulnerabilities.   Too much focus is placed on outdated best practices and ideals regarding security (part of the whole issue with much of the US certifications processes and such) such as securing phones, restricting access to websites, relying on default or lightly modified firewall rules, etc. while the main targets (people, networks, servers, etc.) are almost completely missed and left open to attack.   This is especially true in the government sector where I have seen far too often people with good or great talent were passed over for a position and the role was given to, at many times, a far less talented individual due to the simple fact the person did not have an ‘active’ security clearance.  So, the organization sacrificed getting good talent and having potentially better security over the cost of a few dollars and a month of waiting for a check to be completed.   This almost forced recycling of candidates not only perpetuates a pool of under-qualified and outdated talent, but creates a far more dangerous situation such as the mass shooting that arose in Washington D.C. at the NAVSEA HQ on 2013.

We need to rely more on actual talent, skills and ideas and less on certifications, clearances and the like; especially in the realm of cyber security.   The background process has become a joke as even in the case mentioned above at NAVSEA the check was done, but barely.  The contractor who did the checks, USIS, skipped so many steps a tragedy occurred.   Why were steps skipped, simple cost cutting to increase revenue.   The real fix in the US will come when money/companies are not treated as entities that are placed before people in value.

https://en.wikipedia.org/wiki/Washington_Navy_Yard_shooting

Aloha,

A fast thought on US Science and Technology

A fast thought on US Science and Technology

Why do we have “committees” in the US that are formed with people who have no qualifications about the subjects they are researching or studying and who will in turn make legislation, recommendations, etc. directly affecting these areas?

For instance, the committee we had that investigated Global Warming is so lacking in the intellect needed to understand the issues and the data presented. But luckily, most middle school students at my children’s school can grasp the concepts and data just fine. I hope they will move on once they graduate and attend college in a country that respects intellect and the sciences, not shuns and ridicules it as we do in the US. The sad thing here is that Washington D.C. has regressed to Salem days of witch hunts and trials all based on party lines and fear, oh and of course… money.

https://www.opensecrets.org/
http://maplight.org/

Aloha,

%d bloggers like this: