Automation: Reducing cyber risk by reducing risk of manual error Consistency is the enemy of the hacker, and the specialty of the machine.

Take the 'Oops' out of your Ops.

www.sensiblesecurity.org/p/automation...

Cybersecurity News Brief: 03/30/2026 Vishing, the risk of human nature, Iran cyber defense playbook, living on (and protecting) the edge, and an FCC banhammer on foreign routers.

Vishing, the risk of human nature, Iran cyber defense playbook, living on (and protecting) the edge, and an FCC banhammer on foreign routers.

www.sensiblesecurity.org/p/cybersecur...

Risk forecasting: Cloudy with a chance of data breach Organization leaders probably don't understand technical cybersecurity jargon, but they do understand money, probability, and business risk.

Organization leaders probably don't understand technical cybersecurity jargon, but they do understand money, probability, and business risk.

www.sensiblesecurity.org/p/risk-forec...

Cybersecurity News Brief: 03/16/2026 Beware of cyber collateral damage from Iran War, use GenAI to augment security for small teams, Microsoft 365 lessons from the field, Windows hotpatching, and Windows Hello passkey support coming.

Beware of cyber collateral damage from Iran War, use GenAI to augment security for small teams, Microsoft 365 lessons from the field, Windows hotpatching, and Windows Hello passkey support coming.

www.sensiblesecurity.org/p/cybersecur...

Threat-informed controls: Stop guessing and start blocking Adversaries don't do just one thing. They have to accomplish a series of things to achieve their goals. Block one of the things, slow and potentially stop the attack.

Stop guessing what adversaries might do and start looking at what they really do.

www.sensiblesecurity.org/p/threat-inf...

Cybersecurity News Brief: 03/02/2026 AI, What's in a name, AirSnitch wi-fi threat, and... quishing?

www.sensiblesecurity.org/p/cybersecur...

Passive preventative controls: cybersecurity essentials that never sleep Minimize risk with proactive protection by prioritizing the basic cybersecurity hygiene every organization needs, regardless of the threat.

Minimize risk with proactive protection by prioritizing the basic cybersecurity hygiene every organization needs, regardless of the threat.

www.sensiblesecurity.org/p/passive-pr...

Cybersecurity News Brief: 02/23/2026 Getting "played" by email, thwarting cookie theft, data extortion, and newsflash: threat actors are using AI.

Cybersecurity News Brief: 02/23/2026

Getting "played" by email, thwarting cookie theft, data extortion, and newsflash: threat actors are using AI.

www.sensiblesecurity.org/p/cybersecur...

Strategy first: Why your security program needs a map before a toolbox The transition from guiding principle to everyday security work requires a clear roadmap. We discuss the difference between strategies and tactics, why strategy comes first, and the five supporting st...

"Using tactics without a strategy is like building a house without a blueprint. You might end up with a great kitchen but no front door."

www.sensiblesecurity.org/p/strategy-f...

Cybersecurity's first principle A good place to start.

The best place to start is at the beginning.

www.sensiblesecurity.org/p/cybersecur...