7 min read
Rob Labbé: Nov 10, 2025 9:23:46 PM
I’ve talked about security cost as the key metric to report on your security program when working with executives and the board. What we have not discussed, however, is how. This blog post will start with a reminder of the security cost metric and...
Read More
1 min read
When a cyberattack strikes, the immediate focus is often on technical recovery: restoring systems, protecting data, and resuming operations. But what...
1 min read
This month’s focus is on the importance of double-checking the work of security researchers and headlines. We live in a fast-paced news cycle and a...
2 min read
Rob Labbé: Aug 12, 2025 12:00:00 AM
As security practitioners and leaders, we must contribute to the professionalization of our field by searching out data and evidence-based solutions...
2 min read
We live in very polarizing times, particularly in the US. We choose our words carefully, tiptoe around topics that might devolve into argumentation...
3 min read
Rob Labbé: Jun 5, 2025 12:00:00 AM
As I talk through the practical application of the security cost framework with our members, we are consistently running into a common stumbling...
1 min read
At the Mining and Metals ISAC, we monitor cyber incidents and track trends within the mining and metals sector. Compared to last year, incidents have...
4 min read
Key Points: TLP is a Sharing Protocol. Companies that do not share threat information are at a disadvantage. Overclassification stifles sharing...
3 min read
If you work in cybersecurity in mining, it is easy to forget why we do what we do. We are not in the cybersecurity business; we are not merely...
3 min read
Rob Labbé: Mar 8, 2025 12:00:00 AM
Phishing is a significant compromise vector for all companies in all industries. At theMining and Metals ISAC annual conference in November, we...