KIM L. JONES

Most of my CISO assignments have been transformative roles. I've usually been called in when the company is in crisis or to replace a CISO that has been let...

A few years ago a good friend of mine and longtime CISO left the chair to become the chief security strategist at a well-known security technologies company....

Several weeks ago I sat down with my good friend Jill to discuss security and the security profession. Jill doesn't come from our world yet she has a keen a...

In the wake of the Equifax breach, I have found myself on an increasing number of calls with reporters and business leaders from various industries. Invaria...

I am not going to talk about the Equifax breach. I know nothing more about the breach than what has been reported via numerous media outlets and commented on...

Recently I and several other cybersecurity professionals were asked, "What does it take to become a cybersecurity superhero?"  Interestingly enough, there wa...

I usually don't use this blog to comment on security "current events;" there are enough pundits and prognosticators out there already that one more voice isn...

My son Scott turns 23 today. As I watch him making his way into the world I am endlessly proud of the truly kind, generous, and scary-smart Man that he has b...

In my new role, I regularly speak with business leaders and senior cyber professionals about the next generation of cyber warriors and what skills they will ...

Pop quiz today! Which of the following situations is a violation of privacy: A national retailer utilizes purchases you make with them to send you advertisem...

As we look back on 2016, we are once again faced with a plethora of data breaches which resulted in the exposure of hundreds of millions of records across th...

I’ve had the privilege through most of my career to have known some very smart and thought-leading people. These people regularly push me to the edge of my c...

Security professionals have preached for some time about the importance of understanding the business when constructing a security program. One of my esteem...

"Explain it to me like I'm a 6 year old." I first heard this line spoken by Denzel Washington in the 1993 movie Philadelphia . Since then, I've adopted and ...

Back in my GI days I participated in an intelligence exercise designed to simulate how we would go about defining and gathering information on priority intel...

Over the past few weeks there has been a bit of a dust-up regarding the reliability of analysis and information originating from our nation's intelligence co...

Jim Routh is one of our industry's visionary leaders. I always enjoy listening to him and his vision of the direction of our profession. Recently, I had oc...

Over the past three weeks I’ve had occasion to attend three separate events all focusing on cybersecurity and the Board of Directors (BoD). Two events were ...

Recently, I've come across a spate of articles discussing the need for security professionals to "speak the language of the business." This phrase has been ...

For the past 6 weeks I have been listening to the rumbles and fallout of the RSA conference… …no, that’s not quite correct. It’s not been the fallout from th...