Starting and Growing a Cybersecurity Career

A cyber threat analyst describes a cyberattack to a colleague at work

*All content on this post was human-generated from 20 years of experience. Cybersecurity is a large field of study and practice.  It can be daunting to start and grow a cybersecurity career. However, cybersecurity spans from extremely technical work to legal, policy, governance, and project management providing opportunities to almost everyone’s unique skills and talents.  […]

ChatGPT, Artificial Intelligence, and Cyber Threat Intelligence: a moment in time

ChatGPT, Artificial Intelligence, and Cyber Threat intelligence

It is safe to say that the Chat GPT function from OpenAI has created a firestorm of conversation about the applications of artificial intelligence (AI) in knowledge work and scholarship, which includes cyber threat intelligence.  Can ChatGPT really replace the thought and knowledge work done by many people? That question is outstanding and I cannot […]

CART: The 4 Qualities of Good Threat Intelligence

Threat Intelligence Quality

I write often of poor quality threat intelligence which pervades the security community.  Poor quality threat intelligence not only has a heavy cost on its consumers, it also threatens the confidence threat intelligence consumers place in their providers.  Confidence is the cornerstone of threat intelligence.  Nobody will take intelligence from an untrustworthy source and act – at least they shouldn’t.  It […]

Intelligence or Marketing? Which is it and how to tell using the ADEPT model

blank

It is common to ask whether a blog or whitepaper by a cybersecurity company is marketing FUD (fear, uncertainty, doubt) or valuable threat intelligence. Funding bias is a real issue. Particularly in funded research studies. Funding bias (or sponsorship bias) is more subtle in cyber threat intelligence because private cybersecurity companies rely on customers to […]