Information security is a rigged game and we have no choice but to play it every day. Rules are mandatory for the good guys but optional for the bad guys. And the good guys are losing. Now’s the time to start playing offense and turn this game around. We can do it if we work together! Unsecurity sounds the call and lays out the plan for information security professionals to unite in strength and fix this broken industry.
Evan Francen is the CEO and founder of FRSecure, a leading information security consulting company based in Minnesota. In 2017, he also founded SecurityStudio, a software-as-a-service (SaaS) company dedicated to building a community of information security practitioners who speak the same security language. He coinvented FISASCORE, the information security risk translation and assessment tool for companies.
Throughout his more than twenty-five-year career in information security, Evan has helped hundreds of businesses, small and large; has advised legal counsel in high-profile breaches, including Target and Blue Cross Blue Shield; and has served as an expert witness in several federal criminal cases.
Collectively, these accomplishments, and a few others, all lead to his mission: To fix the broken information security industry. This is a mission that requires the help of many like-minded people coming together as one. This cooperation is a central theme of this book.
“Hard-hitting, priceless wisdom around fixing our broken information security industry model. Success like Evan’s leaves clues. You’re sure to find yours within this compelling book.” —Nick Hernandez, cofounder and former CEO, Aeritae Consulting Group
“Evan’s straightforward analysis is spot on. His ‘prairie-style’ writing weaves honesty, humor, sidebars, and stories into a cohesive format that’s enlightening and challenging at the same time.”—Theresa Semmens, CISO, University of Miami
“A beacon of hope for misunderstood information security professionals everywhere. This book is a must-read for anyone who wants to truly learn what works and how to do it right. Evan Francen is the expert.” —Serge Suponitskiy, CTO, Flight Centre Travel Group
“Evan has put together a masterful plan to professionalize our industry by standardizing our language and making it understandable to the ‘normal’ people in business. It’s a great read and provides a solid foundation. I highly recommend it.” —Tony Cole, CTO, Attivo Networks; member of the board of directors, WhiteHat USA; member of the NASA Advisory Council, NASA; and member of the board of directors, (ISC)²
“Evan is personally committed to bringing together a fractured industry. He pulls back the shroud from information security and speaks a simple truth to the fabric of our trade. You’ll come away with a deeper understanding of the problem and how to be part of the solution.” —Dixon Gould, SVP/CIO/CISO
“The ‘hope and a prayer’ version of cybersecurity practiced by most organizations is being inconveniently exploited everywhere. The first step to getting better is to admit that you have a problem and to define it. The second step is to adopt the solutions presented by a truly passionate expert. The only reason not to buy two copies (one for you, one for your IT person) is that you’ll no longer have any excuses.” —Tom Kieffer, CEO, Virteva