Defense in Depth

Defense in Depth promises clear talk on cybersecurity’s most controversial and confusing debates. Once a week we choose one controversial and popular cybersecurity debate and use the InfoSec community’s insights to lead our discussion.

Can AI improve Third-Party Risk Management (TPRM) 04/03/2025

Cybersecurity Is NOT an Entry-Level Position 03/27/2025

Hey Vendors, What Problem Is Your Product Solving? 03/20/2025

We've Been Fooled. There Is No Talent Shortage. 03/13/2025

Is There an Increasing Consolidation of Vendors in the SOC? 03/06/2025

Are CISOs Struggling to Get Respect? 02/27/2025

Is Platformization Vs Best-of-Breed a False Dichotomy? 02/20/2025

Protecting Your Backups from Ransomware 02/13/2025

Can a Security Program Ever Reach Maintenance Mode? 02/06/2025

The Hardest Problems in Security Aren't "Security Problems" 01/29/2025

If and When Should a CISO Have a Long Term Security Plan? 01/23/2025

Do We Want CISOs Dictating How Salespeople Should Engage? 01/16/2025

Is AI Benefiting Attackers or Defenders? 01/09/2025

CISOs DO Own the Risk 01/02/2025

How Can We Fix Alert Fatigue? 12/12/2024

Vulnerability Management ≠ Vulnerability Discovery 12/05/2024

Are Security Awareness Training Platforms Effective? 11/21/2024

The Argument For More Cybersecurity Startups 11/14/2024

How Are New SEC Rules Impacting CISOs? 11/07/2024

Managing the Risk of GenAI Tools 10/31/2024

Defending Against What Criminals Know About You 10/24/2024

Will We Ever Go Back From Work From Home? 10/17/2024

The Lurking Dangers of Neglected Security Tools 10/10/2024

When You Just Can't Take It Anymore in Cyber 10/03/2024

Is It Possible to Inject Integrity Into AI? 09/26/2024

Are Phishing Tests Helping or Hurting Our Security Program? 09/19/2024

Who Is Responsible for Securing SaaS Tools? 09/12/2024

Hiring Cyber Teenagers with Criminal Records 09/05/2024

What's Working With Third-Party Risk Management? 08/29/2024

What Triggers a CISO? 08/22/2024