Nuvem Legal Notice: Protected Whistleblower Disclosure
Nuvem Legal Notice: Protected Whistleblower Disclosure
From: Albert Rojas
Date: Tue, Oct 24, 2023 at 8:18 AM
Subject: Re: October is Security Awareness Month
To: Michael Larke <mlarke@nuvem.com>
Cc: Luigi Squillante <Luigi@nuvem.com>
Sorry about that!
However, the Nuvem mail server did send me an alert that I am restricted emailing “all nuvem employees”. So that filter works.
But I am serious, it's all from the inside sir.
I have yet to see an enterprise breached from penetration. Only time the enterprise is breached is when the inside is sloppy:
1. leaving system-of-records on an edge mode for lightweight BI tools (Walmart, BofA)
2. IT releasing master keys to 3rd parties (TIAA Bank recent breach)
3. Data Policies not up to date (JPMC WhatsApp breach)
All that penetration does is point out which enterprise has yet to figure out virtual IP’s running servers as active/active (think Google 24/7)
I remember provisioning software for AMEX. The lead DBA escorted me into his walk-in bedroom closet, doing it all from a green screen CRT because even Jesus can’t get inside an AMEX
Data center
I learn everyday and excited learning more about the Nuvem process.
Respectfully,
Al Rojas
Get Outlook for iOS
Albert Rojas
Cloud Data Administrator
(Formerly 340Basics)
888-356-6225
From: Michael Larke <mlarke@nuvem.com>
Sent: Tuesday, October 24, 2023 8:01:23 AM
To: Albert Rojas <arojas@nuvem.com>
Cc: Luigi Squillante <Luigi@nuvem.com>
Subject: Re: October is Security Awareness Month
Albert
Please do not reply to all on communications of this type.
Michael Larke
VP, IT Security, Compliance & Infrastructure
631-388-7192
(Formerly 340Basics)
888-356-6225
On Oct 24, 2023, at 7:57 AM, Albert Rojas <arojas@nuvem.com> wrote:
Yup, and while penetration monitoring is important, been there done that STIG-ing servers for national security… in my humble opinion, it all comes from the inside:
I wrote www.OFAC.ai during the lockdown after hearing stories that IBM Watson was trying to do the same and failing. It’s a global financial Bank off Broadway story and then
some.
“… . Just like your housekeys, you want to do everything you can to keep your passwords safe…”
Perhaps, but more important, you want to make sure you don’t leave your jewelry on the coffee table.
Excited to be at Nuvem (2nd week). And yes, the reverse train commute from the city is worth it, and then some. See attached exhibits.
Respectfully,
Al Rojas
Get Outlook for iOS
https://mail.google.com/mail/u/0/?tab=rm&ogbl#drafts/FMfcgzGwHLnPxrCVHVrzSkLlXjHpVHxL 1/910/26/23, 7:15 PM Albert Rojas
Cloud Data
Administrator
Re: October is Security Awareness Month - rojas.albert@gmail.com - Gmail
From: Michael Larke <mlarke@nuvem.com>
Sent: Tuesday, October 24, 2023 7:15 AM
To: All Nuvem Employees <All_Nuvem_Employees@nuvem.com>
Subject: October is Security Awareness Month
... Don’t let this deter you, though. multi-factor authentication is typically very safe, and it is one of the best ways you can bolster the security of your data!
View in SharePoint
Michael Larke
VP, IT Security, Compliance & Infrastructure
631-388-7192
smallsize
<nuvem-finalregisted-highres-
3668769a-5169-48e8-a72b-
_
a94fa97a34e0.png>
(Formerly 340Basics)
888-356-6225
Formal Whistleblower Disclosure filed under 18 U.S.C. § 1833(b). No classified, sealed, or proprietary materials are included.