About Scott
Scott Wright is a writer, speaker, consultant and coach with a unique ability to connect with people. While not much is known (even to him) about the early years of Scott’s career, there is a general consensus that he was born a problem solver. Most recently, he has been observed helping various organizations to improve their performance, most often through the leveraging of their investments in human resources and information security. Trained as an engineer, he almost certainly has been involved in many software development and product management initiatives. Scott has yet to deny these claims.
Scott’s views on information security cover a broad range of disciplines. In fact, he has been known to say that, “If a business doesn’t have interesting security issues, it isn’t really a business.”
In the end, Scott believes that business is about delivering value, and information security is about protecting that value.
“Security Perspectives Inc.” is Scott’s consulting company, which specializes in Security Services for Management such as Coaching, Training, Seminars, Keynotes, Security Assessments, Team Building and Security Awareness; just about anything you might be concerned with as an executive or manager of an organization, when it comes to protecting value.
For more information on Scott Wright, or on Security Perspectives Inc., you can contact us at inquiries@securityviews.com.
Scott encourages comments on his articles. However, due to the amount of SPLOG (blog spam) out there, you may sometimes have to register as a subscriber to be able to post comments.
- - - THIS JUST IN - - -
Heaven only knows why, but somebody suggested that I should try to learn more specifics about my own background, and put them here. Apparently, I picked up an engineering degree from the University of Waterloo (circa 1985), and found a Masters of Business Administration degree from the University of Ottawa a few short years later. There is also some trace evidence that I battled with scary salespeople and developers as a product manager at Entrust Technologies and Hummingbird (not the fish-finder company) before revealing that I was actually a consultant. A few of my synapses may also fire at the mention of companies like Mitel, Nortel, Prior Data Sciences and Gallium Software.
alan shimel on 30 Jan 2007 at 11:10 am #
Scott
Saw your blog on Michael Farnum’s infosec place. I wanted to invite you to the Security Bloggers Network, but need an email address to send the invite. If you can send me one, will get the invite out to you
thanks
alan
Security Views » Welcome to Security Views! on 14 Mar 2007 at 5:16 am #
[…] About Scott Wright […]
Grant on 29 May 2007 at 6:18 am #
I’m interested in learning more about the differences between risk and security management within today’s business priorities.
Scott on 29 May 2007 at 9:54 pm #
@Grant,
Thanks for the inquiry. That’s a very noble objective you’re undertaking. You can find many useful resources (assuming you are concerned with Canadian business priorities) at http://www.cse-cst.gc.ca that might help get you started in learning about Risk Management. You might also look at http://www.examcram2.com/articles/article.asp?p=418007&rl=1 which describes the Security Management domain as part of the Common Body of Knowledge for the Certified Information Systems Security Professional exam.
My personal view is that Risk Management is a methodology that can be used by any organization to formalize the process of decision making based on likelihood and impact of adverse events occurring. There are many Risk Management methodologies that ultimately aim to achieve this objective.
Security Management is more of a collection of policies, procedures and guidelines, together with their supporting infrastructure, which aims to align an organization’s security posture with its business objectives and priorities. Risk Management is usually part of a good Security Management framework.
I hope that helps.
mroonie on 16 Aug 2007 at 12:18 pm #
Hey Scott,
It took me a while but I finally got my articles done about implementing security policies. Thanks for giving me permission to use your blog as a reference for my articles. Here are the links to my articles if you’re interested:
3 Steps to Implementing your Security Policy
Tips to Implementing your Security Policy
AnilS on 24 Nov 2007 at 11:24 pm #
Scott, thanks for leaving a note on my blog at
http://anil-identity.blogspot.com/2007/11/online-social-networkstubingphishing.html
It really makes me uneasy to realize that Online Social Networks can be the gateway to disaster. Human beings need to socialize and with decreasing time and a global economy, people are turning to the internet to socialize. And behold, you have the bad side of the world also turning up to these networks to get YOU.