top of page

Department of Education Lambasted Over Database Vulnerabilities

I honestly do not know what to say or where to begin.  I cannot say that I am surprised that yet another government agency has failed to fund and execute an effective IT security program.  This is a systemic problem and I believe it should be addressed before additional controls are passed down to the private sector.  The approach of “do as I say and not as I do” can no longer be allowed to stand.


Recent Posts

See All

Rethinking Software in the Organizational Hierarchy

I very much enjoyed this article from Pieter Danhieux via Dark Reading and this creative approach to the management of applications and hierarchical security. The concept of least privilege and the d


bottom of page