Introducing Mich Kabay | InfoSec Reviews Blog

It is with much excitement that we welcome Mich Kabay’s blog to InfoSec Reviews; from now on to be known as Perception.
Mich has been the author of the Security Strategies newsletter at Network World for the last 11 years, posting in excess of 1200 articles, so we are honoured to offer him his new home here on our website.  Mich’s first blog post for us, Credo, is already published for you to read (back on the main InfoSec Reviews site), and it’s a simple introduction to what’s to come over the following months. Just click the Perception link on top menu or on the main menu at
Perception will provide us with Mich’s unique viewpoint and commentary on the world of Information Security.  As he says, the blog is aimed at everyone in the security industry; from CIOs, to programmers, from consultants to students – all  are welcome to drink down his vast experience.
InfoSec Review is delighted to welcome Mich to our site and we encourage you to comment as much as you can on Mich’s work, as this is what will make the column its most valuable. And all that remains to be said is… over to you Mich…..

Here’s a bit about the man himself:

Professor of Information Assurance & Statistics, 
School of Business and Management, Norwich University Mich Kabay began programming computers in assembly language in 1965. In 1976, he received his PhD from Dartmouth College in applied statistics and invertebrate zoology and taught biology, statistics, and programming as a university professor in Canada and overseas. In 1979, he joined a compiler team for a new 4GL and RDBMS in the US, then joined Hewlett-Packard Canada in 1980 as an operating systems and database performance specialist, winning the Systems Engineer of the Year Award in 1982. He ran his own consulting firm from 1986 to 1998, specializing in operations management, facilities security, and corporate security policy development and implementation. He served as Director of Education for the National Computer Security Association from 1990 to 1999, and then worked with AtomicTangerine where he supported the International Institute for Information Integrity (I-4). He has been a speaker at the United States War College, the Pentagon, NATO HQ, and at NATO Counterintelligence training in Germany. He earned his CISSP designation in 1997. He was inducted into the ISSA Hall of Fame in December 2004 and earned his ISSMP designation from (ISC)2 in November 2005. He joined Norwich University in 2001, served as Program Director of the Master’s Program in Information Assurance from 2002 to 2009, and was the CTO of the School of Graduate Studies in from 2005 to 2009.

Since 1986, he has published over 1300 articles in operations management and security, written a college textbook on enterprise security (McGraw-Hill, 1996), and served as Technical Editor of the 4th (2002) 5th (2009) and 6th (due 2013) editions of the Computer Security Handbook (Wiley).

His Web site is