Comments on: Won’t Get Fooled Again http://whatisopsec.com/2008/10/17/wont-get-fooled-again/ "That's Not OPSEC" Sun, 20 May 2012 15:36:41 +0000 http://wordpress.org/?v=2.2.1 By: Jeffrey W. Bennett http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-2082 Jeffrey W. Bennett Tue, 25 Nov 2008 19:53:43 +0000 http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-2082 Excellent points. Too often we use scare tactics to get our points or sales accross. Successful members of this industry know how to speak to their management on the importance of OPSEC procedures and make OPSEC a team effort not a lonely business. Excellent points. Too often we use scare tactics to get our points or sales accross. Successful members of this industry know how to speak to their management on the importance of OPSEC procedures and make OPSEC a team effort not a lonely business.

]]> By: Revelator http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-816 Revelator Tue, 21 Oct 2008 14:20:08 +0000 http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-816 Thanks Numlock. Keep fighting the good fight brother! Thanks Numlock. Keep fighting the good fight brother!

]]> By: Frank Koza http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-814 Frank Koza Tue, 21 Oct 2008 13:57:54 +0000 http://whatisopsec.com/2008/10/17/wont-get-fooled-again/#comment-814 Yay!!! Great post. You finally hit the nail on the head, Rainman. :) I keep having folks tell me that leadership doesn't 'get it' about the importance of OPSEC and that they have no support or advocacy. I just tell them that we do a horrible job of teaching people how to properly qualitatively and quantitatively assess risk and how to do a cost/benefit analysis on measures. When you give your bosses crap, then expect crap back. Now if ye can just convince them that it's more than just protecting against communications intercept, open source, and social engineering. Yay!!! Great post. You finally hit the nail on the head, Rainman. :)

I keep having folks tell me that leadership doesn’t ‘get it’ about the importance of OPSEC and that they have no support or advocacy. I just tell them that we do a horrible job of teaching people how to properly qualitatively and quantitatively assess risk and how to do a cost/benefit analysis on measures. When you give your bosses crap, then expect crap back.

Now if ye can just convince them that it’s more than just protecting against communications intercept, open source, and social engineering.

]]>