Cristian Tracci
@cristracci.bsky.social
🤓 Cyber, international security and public policy
☀️Positive thoughts and 🧠 interesting conversations
🏛️🦁 Columbia SIPA alumnus
☀️Positive thoughts and 🧠 interesting conversations
🏛️🦁 Columbia SIPA alumnus
Cybersecurity Policy Harmonization: how should it be done?
Today, cybersecurity is regulated by hundreds of policies at the EU and national levels. Building a comprehensive overview that allows us to identify what should stay and what should be scrapped is a daunting task.
Today, cybersecurity is regulated by hundreds of policies at the EU and national levels. Building a comprehensive overview that allows us to identify what should stay and what should be scrapped is a daunting task.
Bridging Europe's Cybersecurity Divide Through Political Will | TechPolicy.Press
Cristian Tracci argues hard work is needed to harmonize cybersecurity regulations in Europe, but the real test lies in political agreement.
www.techpolicy.press
March 7, 2025 at 5:41 PM
Cybersecurity Policy Harmonization: how should it be done?
Today, cybersecurity is regulated by hundreds of policies at the EU and national levels. Building a comprehensive overview that allows us to identify what should stay and what should be scrapped is a daunting task.
Today, cybersecurity is regulated by hundreds of policies at the EU and national levels. Building a comprehensive overview that allows us to identify what should stay and what should be scrapped is a daunting task.
Who would be the European Rob Joyce? Not in terms of job role, but insights, personality, tech/policy mix
February 6, 2025 at 9:19 PM
Who would be the European Rob Joyce? Not in terms of job role, but insights, personality, tech/policy mix
If you are developing and enforcing security policies and recommendations across your organisations, ask yourself two questions:
1. Will people actually believe it is effective to protect the org?
2. Will people find it too strict or demanding?
1. Will people actually believe it is effective to protect the org?
2. Will people find it too strict or demanding?
January 10, 2025 at 10:38 PM
If you are developing and enforcing security policies and recommendations across your organisations, ask yourself two questions:
1. Will people actually believe it is effective to protect the org?
2. Will people find it too strict or demanding?
1. Will people actually believe it is effective to protect the org?
2. Will people find it too strict or demanding?
I am a 20y experienced red teamer. I took up 2 jobs as a blue teamer and I burned out. That’a why I do policy now.
Quote
Quote
December 5, 2024 at 12:27 PM
I am a 20y experienced red teamer. I took up 2 jobs as a blue teamer and I burned out. That’a why I do policy now.
Quote
Quote
Piotr Ciepiela, Cybersecurity Leader, EY Partner.
The private sector is raising concerns about the amount and harmonisation of legislation.
At the same time, is important to have those regulations.
The private sector is raising concerns about the amount and harmonisation of legislation.
At the same time, is important to have those regulations.
December 5, 2024 at 8:53 AM
Piotr Ciepiela, Cybersecurity Leader, EY Partner.
The private sector is raising concerns about the amount and harmonisation of legislation.
At the same time, is important to have those regulations.
The private sector is raising concerns about the amount and harmonisation of legislation.
At the same time, is important to have those regulations.
Lorenzo Pupillo kicking off CEPS Cybersecurity Summit 2024
December 5, 2024 at 8:29 AM
Lorenzo Pupillo kicking off CEPS Cybersecurity Summit 2024
I finally got around to reading ‘No Shortcuts’.
I expected it to be quite good. What I didn’t expect was this level of conceptual depth together with clarity and conciseness. I have seen few academic books able to achieve that.
I expected it to be quite good. What I didn’t expect was this level of conceptual depth together with clarity and conciseness. I have seen few academic books able to achieve that.
December 3, 2024 at 7:51 AM
I finally got around to reading ‘No Shortcuts’.
I expected it to be quite good. What I didn’t expect was this level of conceptual depth together with clarity and conciseness. I have seen few academic books able to achieve that.
I expected it to be quite good. What I didn’t expect was this level of conceptual depth together with clarity and conciseness. I have seen few academic books able to achieve that.
Oho! ENISA has a new website, and no one says anything?!
Did I miss the news?
There are a couple of links to fix, otherwise pretty cool!
www.enisa.europa.eu
Did I miss the news?
There are a couple of links to fix, otherwise pretty cool!
www.enisa.europa.eu
Home | ENISA
ENISA is the EU agency dedicated to enhancing cybersecurity in Europe. They offer guidance, tools, and resources to safeguard citizens and businesses from cyber threats.
www.enisa.europa.eu
November 29, 2024 at 9:33 PM
Oho! ENISA has a new website, and no one says anything?!
Did I miss the news?
There are a couple of links to fix, otherwise pretty cool!
www.enisa.europa.eu
Did I miss the news?
There are a couple of links to fix, otherwise pretty cool!
www.enisa.europa.eu
Everyone I followed on X has finally migrated to Bluesky. Thank you
November 24, 2024 at 5:14 PM
Everyone I followed on X has finally migrated to Bluesky. Thank you
Reposted by Cristian Tracci
Germany cybersecurity strategy evolved in the wake of the 2015 Russian hack of the Bundestag and the 2022 invasion of Ukraine, but still faces limitations on countering cyber operations in peace time, writes Matthias Schulze: bindinghook.com/articles-bin...
A new ‘turning point’ for Germany’s cyber posture?
The 2022 invasion of Ukraine led to major updates to German defence policy, but cyber defence is still lacking
bindinghook.com
November 22, 2024 at 6:49 AM
Germany cybersecurity strategy evolved in the wake of the 2015 Russian hack of the Bundestag and the 2022 invasion of Ukraine, but still faces limitations on countering cyber operations in peace time, writes Matthias Schulze: bindinghook.com/articles-bin...
'Moral Politics' is probably going down as the most engaging book I’ve read this year.
Take cognitive science.
Take political philosophy.
Now apply them to the American system.
Political discourse is never about what’s said.
It’s about deeper meanings and references.
Take cognitive science.
Take political philosophy.
Now apply them to the American system.
Political discourse is never about what’s said.
It’s about deeper meanings and references.
November 23, 2024 at 12:09 PM
'Moral Politics' is probably going down as the most engaging book I’ve read this year.
Take cognitive science.
Take political philosophy.
Now apply them to the American system.
Political discourse is never about what’s said.
It’s about deeper meanings and references.
Take cognitive science.
Take political philosophy.
Now apply them to the American system.
Political discourse is never about what’s said.
It’s about deeper meanings and references.
Note to my future self: if one ever calls something “comparative”, you would expect at least a simple minimal table. No one reads, or should be expected to read, 100s of pages on anything.
November 22, 2024 at 2:31 PM
Note to my future self: if one ever calls something “comparative”, you would expect at least a simple minimal table. No one reads, or should be expected to read, 100s of pages on anything.
One of my 3 rules on genAI is that one needs to learn how to use it - and invest the time to figure out how to do so.
November 22, 2024 at 6:30 AM
One of my 3 rules on genAI is that one needs to learn how to use it - and invest the time to figure out how to do so.
Feedback I received: "You need to get better at promoting and sharing your work. If other people had invested the same time and energy in something similar, they would be knocking on the gate of the White House to present it."
November 21, 2024 at 12:22 PM
Feedback I received: "You need to get better at promoting and sharing your work. If other people had invested the same time and energy in something similar, they would be knocking on the gate of the White House to present it."
Great title to get you (me definitely) hooked. Great piece about the fundamental differences between X/FB and the new gen of social media. Great way to tell, and sell, Bluesky to Americans. Lots of questions about what models we want and need for our social media, the public square.
If you're new to Bluesky, or just want to understand how it's profoundly different from platforms like X, I wrote this article last year about federated social media -- Bluesky and Mastodon specifically -- and how they fit into the US history of federalism. www.theatlantic.com/technology/a...
Ben Franklin Would Have Loved Bluesky
Facebook and Twitter seem less relevant by the day. They may be replaced by new “federated” platforms.
www.theatlantic.com
November 18, 2024 at 7:44 AM
Great title to get you (me definitely) hooked. Great piece about the fundamental differences between X/FB and the new gen of social media. Great way to tell, and sell, Bluesky to Americans. Lots of questions about what models we want and need for our social media, the public square.
The Sunday night question: Should you run an awareness program? Should it even be one of your security controls?
If you are a company, should you allocate money for them? How much? Why?
If you are a company, should you allocate money for them? How much? Why?
CSDL | IEEE Computer Society
www.computer.org
November 17, 2024 at 8:53 PM
The Sunday night question: Should you run an awareness program? Should it even be one of your security controls?
If you are a company, should you allocate money for them? How much? Why?
If you are a company, should you allocate money for them? How much? Why?
Finally migrating to Bluesky - pretty exciting! Any help connecting to the right people?
November 17, 2024 at 1:23 PM
Finally migrating to Bluesky - pretty exciting! Any help connecting to the right people?