3 min read
Rob Labbé: Dec 5, 2025 1:35:29 AM
Cyber incident response is often viewed as a technical domain, with practitioners skilled in malware reverse engineering, network and host forensics, and a wide range of other DFIR skills. If those skills are not available in-house, many 3rd parties...
Read More
7 min read
Rob Labbé: Nov 10, 2025 9:23:46 PM
I’ve talked about security cost as the key metric to report on your security program when working with executives and the board. What we have not...
2 min read
Rob Labbé: Aug 12, 2025 12:00:00 AM
As security practitioners and leaders, we must contribute to the professionalization of our field by searching out data and evidence-based solutions...
3 min read
Rob Labbé: Jun 5, 2025 12:00:00 AM
As I talk through the practical application of the security cost framework with our members, we are consistently running into a common stumbling...
3 min read
Rob Labbé: Mar 8, 2025 12:00:00 AM
Phishing is a significant compromise vector for all companies in all industries. At theMining and Metals ISAC annual conference in November, we...
4 min read
Rob Labbé: Jan 14, 2025 12:00:00 AM
After my last post on using Security Cost as a metric and the basis for a core security team/CISO objective, a few Mining and Metals ISAC members...
2 min read
Rob Labbé: Jul 21, 2024 12:00:00 AM
Now that most MM-ISAC member organizations impacted by CrowdStrike's issue on Friday are through the worst of the recovery, I want to share some...
9 min read
Rob Labbé: Jun 30, 2024 12:00:00 AM
In last quarter's article, I discussed the process for established IT Security teams to expand their influence into OT. This quarter I want to give...
12 min read
Rob Labbé: Feb 16, 2023 12:00:00 AM
For those of you who missed our first webinar of the year, I discussed a process for integrating IT and OT security —specifically, extending your IT...