Comments on: How security assessments are like going to the dentist http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/ Commentary on the State of Information Security Sun, 10 Jan 2010 16:13:08 -0700 http://wordpress.org/?v=2.9.2 hourly 1 By: An Information Security Place » Blog Archive » Another parallel: security is like cakes http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/comment-page-1/#comment-20169 An Information Security Place » Blog Archive » Another parallel: security is like cakes Thu, 04 Oct 2007 15:53:09 +0000 http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/#comment-20169 [...] am going to make another parallel of security to the real world (not that security isn’t the real world, but I couldn’t think of a better term to [...] [...] am going to make another parallel of security to the real world (not that security isn’t the real world, but I couldn’t think of a better term to [...]

]]> By: www.andrewhay.ca » Suggested Blog Reading - Monday June 25th, 2007 http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/comment-page-1/#comment-19373 www.andrewhay.ca » Suggested Blog Reading - Monday June 25th, 2007 Mon, 25 Jun 2007 21:46:58 +0000 http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/#comment-19373 [...] How security assessments are like going to the dentist - I read through the entire article, half-expecting to see a comment about waking up with your shirt no longer tucked in and belt undone. Perhaps I’ve seen one too many episodes of Seinfeld. Due to my bad judgement, I have not been to the dentist in quite a while (I won’t say how long it has been), and I am dreading going back (I have an appointment today). As I was pondering the pain that will be my payment for poor decision-making, I started thinking how going to the dentist is a lot like getting a security assessment performed. See Andrew Hay and Daniel Cid's tutorial on Enterprise Log Analysis with Q1 Labs QRadar and OSSEC at the iTrust and PST Conferences on Privacy, Trust Management and Security in Moncton, New Brunswick, Canada. Email andrewsmhay [at] gmail.com for more information. [...] [...] How security assessments are like going to the dentist – I read through the entire article, half-expecting to see a comment about waking up with your shirt no longer tucked in and belt undone. Perhaps I’ve seen one too many episodes of Seinfeld. Due to my bad judgement, I have not been to the dentist in quite a while (I won’t say how long it has been), and I am dreading going back (I have an appointment today). As I was pondering the pain that will be my payment for poor decision-making, I started thinking how going to the dentist is a lot like getting a security assessment performed. See Andrew Hay and Daniel Cid’s tutorial on Enterprise Log Analysis with Q1 Labs QRadar and OSSEC at the iTrust and PST Conferences on Privacy, Trust Management and Security in Moncton, New Brunswick, Canada. Email andrewsmhay [at] gmail.com for more information. [...]

]]> By: Michael http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/comment-page-1/#comment-19359 Michael Thu, 21 Jun 2007 16:01:44 +0000 http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/#comment-19359 Believe me, I feel for ya. I went to the dentist last year for the first time in 12 years. The last time I had gone was in the Army. It's come a long way since then. Now they're using lasers for a lot of the work. Believe me, I feel for ya. I went to the dentist last year for the first time in 12 years. The last time I had gone was in the Army.

It’s come a long way since then. Now they’re using lasers for a lot of the work.

]]> By: shrdlu http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/comment-page-1/#comment-19358 shrdlu Thu, 21 Jun 2007 13:37:56 +0000 http://infosecplace.com/blog/2007/06/20/how-security-assessments-are-like-going-to-the-dentist/#comment-19358 <p>Oh, Michael, how right you are. I've had the dentist analogy in my head too. Especially<br /> since you generally only go to visit the ISO if you have to, and you really need him because<br /> you're in pain because you didn't floss (update your antivirus regularly). Nobody<br /> invites ISOs to parties any more than they invite their dentist. Security officers are a<br /> necessary evil, but they don't have a popular message.</p> Oh, Michael, how right you are. I’ve had the dentist analogy in my head too. Especially
since you generally only go to visit the ISO if you have to, and you really need him because
you’re in pain because you didn’t floss (update your antivirus regularly). Nobody
invites ISOs to parties any more than they invite their dentist. Security officers are a
necessary evil, but they don’t have a popular message.

]]>