4 Ways Women Can Be a Ninja at Work

I recently became a Ninja. That’s right. A Cisco Security Ninja. You can be a Ninja too! The Cisco Security Ninja Program (http://wwwin-csdl.cisco.com/ninja_dojo/) confirms lessons learned and challenges participants to reach for higher degrees of competence and proficiency in product security. The program offers four distinct “belt” levels, each one increasing your security knowledge and […]

Building in Security from the Ground Up with The Cisco Secure Development Lifecycle

At Cisco, security runs through everything that we do. It is our commitment to deliver verifiable, trustworthy network architectures built on secure software and secure hardware, backed by prudent supply chain security practices. That’s why Cisco created the Cisco Secure Development Lifecycle (Cisco SDL) to ensure that security is central through the entire product development […]

SecCon and the Limits of the Human Mind

One of the things I like best about Cisco’s focus on security is the internal SecCon conference we put on each year. It focuses on security threats, defenses, and innovation. Although I participate as a trainer, organizer, and reviewer, my favorite role this year was as an attendee. The conference theme, The State of the […]

SecCon 2013: Global and Local

SecCon is our internal security conference, which for the past five years has taken place live in San Jose. Many industry recognized experts  over the years have graced the stage, and the security community at Cisco looks forward to each December where we gather together to network  and  learn  about the new threats that face […]

Reflections from a road trip: The evolving risk of DDoS attacks

The author, Russ Smoak (Director of Cisco Security Intelligence Operations), discusses some of the feedback received from customers recently with regard to the Distributed Denial of Service (DDoS) activities that have occurred over the last few months. One of the main themes from this post is that it is time to start considering the threat of DDoS as a business continuity risk and not necessarily just a security concern.

Security Assessments: More Than Meets the Eye

Is the product safe to use? I have been asked this question on occasion in a non-technical sense and maybe you have too. In a technical context, I could frame the question as “Are the online services and underlying technologies supporting my services safe?”  A continuous effort must go into substantiating the preferable answer (“Yes”) […]

Commitment and Community: Cisco’s Security DNA

This is our final post in the series of SecCon-related articles. This post drives home the point made by Cisco’s senior executives at the SecCon conference – security must be pervasive in every aspect of every product we design, develop, and deploy. It’s what our customers expect, and SecCon is one of the major delivery vehicles for creating a unified front within the engineering community as part of Cisco’s evolution towards the “Internet of Everything”.