Skip to main content

Episode #20 - Somebody's Got To Pay (for this)!

Alright, it’s my turn (Evan).

The issue is accountability, or (maybe) lack of accountability, in our industry.

Bad things happen and people either:

  • Sling mud.
  • Run and hide (hoping nobody will notice).
  • Defend why they didn't take accountability.

There are good examples out there too, so I don't want to paint a unnecessarily grim picture. I contend there are less good examples of accountability than there are bad examples.

This has been a topic that’s been dominating my thoughts again for the past couple weeks. I say “again” because this isn’t the first time we’ve talked about it.

During episode 18, a couple weeks ago, we were talking about ransomware. The talk was great, but the frustration felt by Chris, Ryan, and myself was obvious. Why do we keep doing the same things repeatedly? Why don’t people do the basics? 

My take was the lack of accountability. So, I drafted a Ransomware Recovery Contract to help.  

So, tonight I want to dig into the greater issue of accountability in general. 

  • The importance of accountability.
  • Repeating the same mistakes over and over.
  • Safe to assume people know?
  • People are dying.
  • When to define accountability.
  • Who’s ultimately accountable for what?
    • In tech – buggy software, social media (see the social dilemma), etc.
    • Big organizations.
    • Small organizations.
    • Public organizations.
    • School districts.
  • Examples of accountability disfunction.
  • Examples of good accountability.
  • What to do about it.
  • Get out ahead. Better now than never (or later).
  • Will CEOs be personally liable someday?

This discussion is sure to be good! Join us LIVE tonight at 10pm (2200) CDT for our thoughts (and some entertainment too).


Popular posts from this blog

Episode One is On!

We're ready to roll! The first episode of the Security Shit Show is scheduled for this Thursday at 10pm CDT. It's sure to be good entertainment watching three information security "experts" shootin' the shit about some information security topic that's bound to get one (or all) of us riled up. We're live streaming our episodes on YouTube, so if you're looking for some Thursday night entertainment, grab a drink and listen in. The YouTube live stream show link is here; The recordings, both video and audio will be posted shortly after the live show, so look out for those too.

Killer Robots? Oh Shit.

If you missed last week’s episode, the Security Shit Show crew tackled the difficult discussion about morals and ethics. There are two ways to treat you ears and/or eyes (not likely) to Episode #5, "Moral and Ethical Shit in a Shitty World" : YouTube (video) Podcast (audio) It was an really good episode. A little bit of shit-slinging, but mostly just great discussion and opinion. If you like our shit, you should subscribe to our shit. Subscribe on YouTube or whatever your favorite podcast thingy is. Rumor has it, the shit will only get better and better! Episode #5 - Killer Robots? Oh Shit. Alright, we’re ready for the next episode of the Security Shit Show! Shout out to a helpful (and maybe even loyal) viewer Robert Hodges for calling our attention to a neat article titled “ Should 'Killer Robots' Be Banned? ”. Do killer robots sound like a good idea to you? Think about it... Certainly, Chris, Evan, and Ryan will have a few things to say about the topic.

What's the Security Shit Show?

If you don't want your life to stink, quit standing in shit. The Security Shit Show is a podcast that three friends put together; Ryan Cloutier, Chris Roberts, and Evan Francen. We're information security veterans (some call us "experts") with more than 70 years of combined experience who have a lot of shit to get off our chest. The information security industry isn't all hunky-dory; we're doing a lot of things wrong and people are suffering because of it. You can be the "fly on the wall" or you can interact with us. Ultimately, this is your call. Here's the lowdown for our show... Name The Security Shit Show You can take this name two ways; either we're calling security a shit show, or we're discussing security shit on the show. The answer is "yes". Purpose Provide people with the real shit going down in our industry, and always discuss ideas about what people can do to make things better. This is not a