A former State Trooper and military-intel campaign team-lead for two combatant commands’ planning divisions, I’ve seen and operated fairly full spectrum for over ten years – back when cyber was still part of Information Operations (IO).
Cyber goes much further – much deeper – than we realised in IO, but some of the initial interpretations we found whilst sorting cyber through a messaging lens need re-examined. Especially in finding useful response options.
The transition to private sector highlighted what I expected, or rather feared. There is a great deal to do, a lot of people to do it, but no one has taken up the banner to lead the charge. For various reasons.
Most professionals in InfoSec spaces mean well but tread water…six inches below surface.
As cyber attacks come thick and fast for our infrastructure, our businesses, our government agencies, it is clear — we are losing. Individually. Collectively. In cyber. In the real world.
Why? Because we don’t explore the possible. Most don’t even see it.
But there is hope.
Observations, concerns, best practices here are all intended to push conversation. The rest is water under.
Disclaimer: The views expressed here are my own, not those of any employers, clients, collaborators, colleagues, students, teachers – past or present or future.