Author Bio

Every decision to remediate is a prediction about the future—paraphrasing from the first Prioritization to Prediction report published in 2018 by Kenna Security (now Cisco) and the Cyentia Institute.  It’s been several years since we started our journey with Jay Jacobs and the Cyentia team to unpack the effectiveness and efficiency of different remediation strategies….

Buzzwords are met with skepticism because they create the illusion that a vendor is trying to “wave a magic wand”—at best, an effort to dazzle; at worst, an intentional hoodwinking. But what if we all—the creators of the technology and the people who use it—could have conversations in the same language? To us, data science…

What’s in a buzzword, like data science? A lot of resentment, for sure, but also a chance to explain.  A buzzword is a word or phrase, new or already existing, that becomes very popular for a period of time. Buzzwords often derive from technical terms. Yet through fashionable use, the original technical meaning disappears, and…

When we read about major security breaches, we often are all too quick to point the blame at the company failing to patch a critical vulnerability. It’s easy to think that these breaches are entirely the fault of lax security teams, but that belief doesn’t hold water. Security teams are overwhelmed. Most companies can only…

In a recent article for the USENIX magazine, In-Q-Tel CISO Dan Geer and Kenna Chief Data Scientist Michael Roytman discuss the importance of measuring the concept of recall in cybersecurity. If you’re not familiar with the term, or can’t quite “recall” what it means, it is one of the two classic measures – along with…

You can draw a lot of parallels between security and healthcare, right down to language we use to describe malicious software. We call various forms of malware viruses, worms and the like not only because they propagate as disease, but more relevantly to us – they are also treated as such. Symptomatic treatment is any…