Wednesday, September 10, 2025

How can certifications be used in the “Cloud CIP” standards?

This post is  available to free and paid subscribers to my Substack blog. If you're not already a subscriber, you can sign up when you ...
Thursday, September 4, 2025

Two types of cloud risk to the Bulk Electric System

This post is  available to free and paid subscribers to my Substack blog. If you're not already a subscriber, you can sign up when you ...
Tuesday, September 2, 2025

Q: Is the NVD digging out of the deep hole it dug for itself since Feb. 2024? A: No

This post is available to free and paid subscribers to my Substack blog. If you're not already a subscriber, you can sign up when you o...
Saturday, August 30, 2025

The “Cloud CIP” drafting team takes on vulnerability management!

This post is available to free and paid subscribers to my Substack blog. If you're not already a subscriber, you can sign up when you o...
Friday, August 29, 2025

A serious new cloud vulnerability – fortunately, it’s fixed. We might not be so lucky the next time.

  This post is available to free and paid subscribers to my Substack blog. If you're not already a subscriber, you can sign up when you...
Monday, August 25, 2025

What’s happening with CVE? Where is it going?

This post is available for both free and paid subscribers to my Substack blog. Go here  to subscribe and read the post.
Thursday, August 21, 2025

You want answers about software security? No problem! Oh, you want reliable answers?…Why didn’t you tell me?

Note from Tom: Note from Tom: I am now putting up all my new posts in my Substack blog, but only select ones in Blogspot. If you would lik...