First CCSP delivery, and some thoughts on oldskool and newskool IT thinking

A few weeks ago I ran my first CCSP training session (I did more than 40 CCSK sessions before this). As of this writing, the attendants still have to do the exam. Apparently the exam slots are booked a few Read more...

How the NSA hacks you, and what cloud can do about it

At the recent Usenix Enigma 2016 conference, NSA TAO chief Rob Joyce explains how his team works. By the way, TAO means Tailored Access Operations, which is a euphemism for hacking. See the full presentation here.  Rob explains their methods, Read more...

Assuring your customer of your service quality

Do you deliver your software product as a service? Or do you offer another IT service online? Then you probably have found that your customers really need assurance that your service is good enough for their purposes. It has to Read more...

How the internet is changing our thinking

The internet changes the way we think, Nicholas Carr writes in “The Shallows”. Simple examples can be found in what we decide to lookup instead of memorize, such as phone numbers. At the same time it still makes sense to Read more...

Cloud Security 101

Here is a one page overview of the basic things you need to know about cloud security. Just register for the full page. It has clickable links to additional resources. First name: E-mailaddress: Your e-mail address will only be used Read more...

Serverless computing is the final frontier in scalable computing

Warning: this post is forward looking and does not give easy answers. Cloud computing continues to enable innovation in the way we develop and deploy software. Service Oriented Architecture (or SOA) is a software development paradigm for breaking up large Read more...

IT Innovation and the bleeding edge

This is the sequel to my introductory post "IT leadership in the 21st century". When IT is being used to drive innovation, it is by definition on the ‘bleeding edge’. This is because proven technology is in wide use, and Read more...

IT leadership in the 21st century

The question I am working on is this. How can IT leaders drive the right level of cloud adoption? We know cloud computing can bring risks and benefits. But how can organizations swiftly and securely do the right level of Read more...

Just did the CCSP exam

(update: I passed! Click here for in-company CCSP training) Yesterday I took the CCSP exam. Certified Cloud Security Professional is the new certification launched by ISC2, and is supposed to be complementary to CCSK. I must have been one of Read more...

Risks of virtualization in public and private clouds

Server virtualization is one of the cornerstone technologies of the cloud. The ability to create multiple virtual servers that can run any operating system on a single physical server has a lot of advantages. These advantages can appear in public Read more...