Mike Rothman is President of independent research firm Securosis. His bold perspectives and
irreverent style are invaluable as companies determine effective strategies to grapple with the
dynamic security threatscape. Mike specializes in the "sexy" aspects of security, like protecting
networks and endpoints, security management, and compliance. After 20 years in and around security,
he’s one of the guys who “knows where the bodies are buried” in the security space. Mike published
“The Pragmatic CSO” in 2007 to introduce technically oriented security professionals to the nuances
of what is required to be a senior security professional. Securosis Blog
Contributions from Mike Rothman, Contributor
- Are there any references that discuss the cost of PCI DSS compliance?
- What is the best way to comply with PCI DSS requirements 9 and 10?
- Will an off-site employee exit procedure violate HIPAA regulations?
- Why you shouldn't wager the house on risk management mo
- Is it a violation of HIPAA to collect consumer Social Security numbers?
- How can a corporation assess the costs of whole-disk encryption?
- What are the security risks of a corporate divestiture?
- Who is responsible for handling security program development in an IT infrastructure?
- Industry experience vs. security certification credentials
- PCI DSS emergency: What to do if you're (very) late to
- How to buy security products: Eight steps to not losing
- How can I get my CISSP certification?
- What types of software can help a company perform a security risk assessment?
- Protecting consumer data with a fraud and risk assessment policy
- Is encrypting cookies a PCI DSS requirement?
- What are the proper procedures for handling a potential insider threat?
- Can a vendor be convinced to add security to its application development process?
- Are senior level executives a target for social engineering attacks?
- PCI Pain: Is it time for an overhaul?
- How to migrate from SAS 70 to ISO 27001