I believe we should make use of a an enterprise security audit team. Though our team has recently updated our security system, we have yet to put this system to any serious test. As familiar and comfortable as we are with our infrastructure, I think it is time for those confidences to be validated externally. … Read more
This memo is in response to your questions concerning enterprise censorship in an attempt to get more productivity out of the workers. I am in favor of these measures, as blocking unwanted or untrusted websites is a great way to prevent targetted infiltration, or falling prey to an automated bot net. But before you make … Read more
This is a dissent to the prevailing organizational trend surrounding placing Information Security(InfoSec) workers outside of the control of the Information Technology (InfoTec) department. I recognize I was asked to create an organizational memorandum relaying the development of our new Enterprise Security Policy, but I cannot in good conscience do that as I believe that … Read more
I believe that an employee has a right to reasonable privacy in cyberspace, even at the work place. Just as you cannot expect an employer to be able to search an employee’s vehicle, or purse, an employee should be able to check one’s personal email or social media account without fear of their IT department … Read more
Vulnerability assessments are designed to be used to ensure a network is secure. How could a potential threat use a vulnerability assessment to gain access to you network. After a Vulnerability Assessment (VA) is complete, it can instill a false sense of security in the company, who, upon receiving high marks on their VA, forget … Read more
With social media being as prevalent as it currently is, many potential employers are looking at candidate’s social media presence as part of the hiring process. Do you believe that his is a good practice? Is it legal? Does it infringe on the candidates 1st amendment rights? Why/Why not? I do not believe employers vetting candidates … Read more
In this ever evolving technical world, the threat for some sort of malicious action increases every day. And to staunch that threat, a business owner may find herself weighing the options of hiring or training staff to act as a security department, or at the very least an incident response team, in case of a … Read more
Hey guys! It’s Robert, your friendly neighbor tech guy, and with the recent security vulnerabilities flying over the internet, I just wanted to take a minute to shoot out this email and address the topic of Intellectual Property and your right to privacy in the realm of cyber space. As our de facto Network Administrator … Read more
Re: Fire Drill Mr. Bossman, I am responding to your prior message of a disaster recovery plan, or “fire drill” as you aptly put it. As it turns out I have been thinking along these same lines, especially in regards to our recent draught, and upon assessing our resources, I have a short term solution, … Read more
Dear Valued Employee, We are grateful and fortunate you decided to come work for The Company! And I would like to be one of the first to welcome to our Radio Team! As you may have seen on the post it note attached to your monitor, I have provided the temporary password to your email … Read more