A Mindset Shift for Digitizing Software Development and Delivery
For professionals who build software solutions, the digitization of software development focuses on improving productivity, consistency, and efficiency resulting in the democratization of team-based development.
Trustworthy Networking is Not Just Technological, It’s Cultural
With the multitude of dangers constantly testing networks, there should be no such concept of “implicit trust”. At the core of the defensive network is the principle of proven trustworthy hardware and software, working in conjunction to protect network devices, data, and applications from attacks.
The Cybersecurity Journey – Always Changing, Always Growing
When I started working on the Cisco Secure Development Lifecycle, I was the only woman in a group of over fifty men.
Recognized Excellence in Trustworthy Product Development and Pervasive Data Protection
Last week at RSA, the 2017 Info Security Products Guide Global Excellence Awards honored three teams from the Cisco Security and Trust Organization for their work in leading security practices.
Built-In Security: Sharing the ‘How’
I work with a lot of customers discussing how they can reduce their cyber risk and increase resiliency with an effective security strategy. It’s easy to talk about leading practices for security, but figuring out how to put them into practice can be a whole other story. As I mentioned in a recent post, the […]
2014: A Look Ahead
It’s December and the 2013 cyber security news cycle has just about run its course. We’ve seen more and increasingly virulent attacks, continued “innovation” by adversaries, and a minor revival of distributed denial of services (DDOS) actions perpetrated by hacktivists and other socio-politically motived actors. Against this, Cisco stood up tall in recognizing the importance […]
SecCon 2013: Global and Local
SecCon is our internal security conference, which for the past five years has taken place live in San Jose. Many industry recognized experts over the years have graced the stage, and the security community at Cisco looks forward to each December where we gather together to network and learn about the new threats that face […]
Securing Linux Based Products With CSDL
Here's the third in a series of posts revolving around the recently held Cisco SecCon 2012 (December 3-6) security conference. The focus of this post is on the Cisco Secure Development Lifecycle (CSDL), Cisco’s approach to building secure products and solutions, and specifically the release of two Cisco documents that have been an integral part of CSDL: “Linux Hardening Recommendations For Cisco Products” and “Product Security Baseline Linux Distribution Requirements."
Let’s Hack Some Cisco Gear at SecCon!
Here's the second in a series of posts discussing how Cisco SecCon 2012 (December 3-6) brought together hundreds of engineers, live and virtually, from Cisco offices around the globe with one common goal: to share their knowledge and learn best practices about how to increase the overall security posture of Cisco products.