Posted Oct 27, 01:34 PM by ben
An audience I once sat in was challenged during a presentation by a co-worker to “develop your own personal security religion” if you haven’t already done so as the consequences of not having one are too great. I assumed he was speaking to everyone but me.
Nonetheless I jotted this challenge down in my moleskin. I’ve not yet systematically wrapped my head around my own mindset or ‘religion’ to speak to it. But this article on OODA loops highlights some of my thoughts on how to develop a team-based mindset of security religion.
In many respects, the goal for a response team is to have the quickest OODA loop around as well as the independence to carry out rapid response. But the three elements the author lists as required for a maneuverable company resonated with me: mutual trust, clear sense of mission, and focus.
Make no mistake, those three items are done through proper leadership.
// :: security-religion/ leadership
Commenting is closed for this article.
This work by http://electricfork.com is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 United States License.
I lead an information security ops and response team. This site is a collection of interesting notes and brainstorms on the protecting from, detecting of, and responding to badness. You can read more about me or my site here.
You can subscribe to my blog via rss 
, or if you're looking for older items check out my archive of previous posts.
I organize a small infosec meetup in baltimore called charmsec. If you are looking for charmsec details you probably want to go here.
RSS