Rational Cybersecurity

The Cybersecurity Business Alignment Framework for Architecture

To ensure security architectures are relevant, you can define them using the Cybersecurity Business Alignment Framework provided in the Multi-Cloud Security Reference Architecture (“refarch”), Rational Cybersecurity for Business (“the book”), and a few other tools. 

Identifies core Cybersecurity Business Alignment Framework Elements

Per a previous post… Continue reading

Which is Easier: Aligning Business to Security, or Security to Business?

Which is Easier: Getting Businesspeople to think in terms of Security, getting Security Teams to think in terms of Business? While security leaders should work both angles, I say the correct answer to Alyssa Miller’s original question (below) is “B”.… Continue reading

At Long Last Rational Cybersecurity Publishes!


I’m so excited to finally announce that “Rational Cybersecurity for Business: The Security Leaders’ Guide to Business Alignment” is live.

You can now buy a paperback, or get a complimentary digital download here.

Rational Cybersecurity for Business 

Why I Wrote the… Continue reading

Rational Cybersecurity Workshop

The Challenge

Is your security organization struggling with skills shortages, budgets, conflicting priorities, a complex IT security environment, a lack of stakeholder buy-in and internal customer adoption, or all the above?

Statistics collected from surveys described in the book “… Continue reading