Month: February 2024

10 Commandments for Operating Security Programs

By Stephen Lipka / February 21, 2024 / 0 Comments

I was recently invited to present to security and IT leaders at a vendor’s gathering of small early-stage biotechs. I packaged up a deck with the anatomy of an attack, the NIST CSF process for defense, and our operating model for running a security program, including measures I saw as basic table stakes (anti-malware, email … Read more

Stop Playing with Bright & Shiny Objects: Think Process Before Technology

By Stephen Lipka / February 15, 2024 / 0 Comments

Scene 1: At one time in another “life,” I was hiring developers for a commercial product. We had a candidate who was sharp, if a bit quirky, and, with the agreement of my team, I took the recommendation to my manager (who had interviewed the candidate). His reaction? “Do you really want to hire someone … Read more