IR comms isn’t merely crisis response, it’s change management because you’ll never be the same again — and that’s a good thing, use it to your advantage.
The goal is not recovery to your previously known state. The goal is recovery that moves you forward, better than before.
#SecurityComms
The goal is not recovery to your previously known state. The goal is recovery that moves you forward, better than before.
#SecurityComms
December 27, 2024 at 4:24 PM
IR comms isn’t merely crisis response, it’s change management because you’ll never be the same again — and that’s a good thing, use it to your advantage.
The goal is not recovery to your previously known state. The goal is recovery that moves you forward, better than before.
#SecurityComms
The goal is not recovery to your previously known state. The goal is recovery that moves you forward, better than before.
#SecurityComms
This week's Discernible Drill is an incident involving open source dependencies.
Subscribe now to join one of our live sessions:
🗓️ Wednesday, April 30, 1-2pm ET
🗓️ Thursday, May 1, 1-2pm PT
DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Subscribe now to join one of our live sessions:
🗓️ Wednesday, April 30, 1-2pm ET
🗓️ Thursday, May 1, 1-2pm PT
DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
April 28, 2025 at 1:29 PM
This week's Discernible Drill is an incident involving open source dependencies.
Subscribe now to join one of our live sessions:
🗓️ Wednesday, April 30, 1-2pm ET
🗓️ Thursday, May 1, 1-2pm PT
DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Subscribe now to join one of our live sessions:
🗓️ Wednesday, April 30, 1-2pm ET
🗓️ Thursday, May 1, 1-2pm PT
DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
April 23, 2025 at 1:40 PM
Our 5-year anniversary giveaway continues with 5 subscriptions to Discernible Drills Pro up for grabs. ($1,200 value!)
Share which of our blog posts taught you something valuable!
Each post = 1 entry.
Multiple entries encouraged!
Winners selected Friday.
#SecurityComms #IncidentResponse
Share which of our blog posts taught you something valuable!
Each post = 1 entry.
Multiple entries encouraged!
Winners selected Friday.
#SecurityComms #IncidentResponse
May 21, 2025 at 2:58 PM
Our 5-year anniversary giveaway continues with 5 subscriptions to Discernible Drills Pro up for grabs. ($1,200 value!)
Share which of our blog posts taught you something valuable!
Each post = 1 entry.
Multiple entries encouraged!
Winners selected Friday.
#SecurityComms #IncidentResponse
Share which of our blog posts taught you something valuable!
Each post = 1 entry.
Multiple entries encouraged!
Winners selected Friday.
#SecurityComms #IncidentResponse
Remember, you can now choose from two different times to fit your schedule.
Register at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms #OpenSourceSecurity
Register at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms #OpenSourceSecurity
April 29, 2025 at 4:03 PM
Remember, you can now choose from two different times to fit your schedule.
Register at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms #OpenSourceSecurity
Register at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms #OpenSourceSecurity
🎉DAY 2 OF OUR ANNIVERSARY GIVEAWAY 🎉
To give back to our amazing community, we’re offering free 1-year Pro subscriptions to our weekly #IncidentResponse communication drills!
To enter: Share which blog post from our team helped you the most & why.
5 random winners chosen Friday.
#SecurityComms
To give back to our amazing community, we’re offering free 1-year Pro subscriptions to our weekly #IncidentResponse communication drills!
To enter: Share which blog post from our team helped you the most & why.
5 random winners chosen Friday.
#SecurityComms
May 20, 2025 at 4:12 PM
🎉DAY 2 OF OUR ANNIVERSARY GIVEAWAY 🎉
To give back to our amazing community, we’re offering free 1-year Pro subscriptions to our weekly #IncidentResponse communication drills!
To enter: Share which blog post from our team helped you the most & why.
5 random winners chosen Friday.
#SecurityComms
To give back to our amazing community, we’re offering free 1-year Pro subscriptions to our weekly #IncidentResponse communication drills!
To enter: Share which blog post from our team helped you the most & why.
5 random winners chosen Friday.
#SecurityComms
Not Just Security: CISOs are Business Executives
Read the full article: discernibleinc.com/blog/cisos-a...
#infosec #SecurityComms
Read the full article: discernibleinc.com/blog/cisos-a...
#infosec #SecurityComms
April 1, 2025 at 3:36 PM
Not Just Security: CISOs are Business Executives
Read the full article: discernibleinc.com/blog/cisos-a...
#infosec #SecurityComms
Read the full article: discernibleinc.com/blog/cisos-a...
#infosec #SecurityComms
"I'm sorry" works better than "It wasn't our fault."
New piece from @melanie-ensign.bsky.social on why security incidents need fewer defensive statements and more trust-building strategies. Turns out, protecting pride often backfires.
Read more: lnkd.in/gnB4-c5C
#SecurityComms #IncidentResponse
New piece from @melanie-ensign.bsky.social on why security incidents need fewer defensive statements and more trust-building strategies. Turns out, protecting pride often backfires.
Read more: lnkd.in/gnB4-c5C
#SecurityComms #IncidentResponse
Beyond Damage Control: The Science Behind Apologies — Discernible Inc
An apology is an opportunity to demonstrate organizational values, rebuild relationships, and emerge stronger.
discernibleinc.com
December 16, 2024 at 5:30 PM
"I'm sorry" works better than "It wasn't our fault."
New piece from @melanie-ensign.bsky.social on why security incidents need fewer defensive statements and more trust-building strategies. Turns out, protecting pride often backfires.
Read more: lnkd.in/gnB4-c5C
#SecurityComms #IncidentResponse
New piece from @melanie-ensign.bsky.social on why security incidents need fewer defensive statements and more trust-building strategies. Turns out, protecting pride often backfires.
Read more: lnkd.in/gnB4-c5C
#SecurityComms #IncidentResponse
In this week’s Discernible Drill, we’ll help you practice:
✅ Identifying technical evidence that helps skeptical reporters understand complex security topics.
✅ Spotting gaps in your PR team's security knowledge that could lead to miscommunication.
#SecurityComms #IncidentResponse
✅ Identifying technical evidence that helps skeptical reporters understand complex security topics.
✅ Spotting gaps in your PR team's security knowledge that could lead to miscommunication.
#SecurityComms #IncidentResponse
September 8, 2025 at 5:29 PM
In this week’s Discernible Drill, we’ll help you practice:
✅ Identifying technical evidence that helps skeptical reporters understand complex security topics.
✅ Spotting gaps in your PR team's security knowledge that could lead to miscommunication.
#SecurityComms #IncidentResponse
✅ Identifying technical evidence that helps skeptical reporters understand complex security topics.
✅ Spotting gaps in your PR team's security knowledge that could lead to miscommunication.
#SecurityComms #IncidentResponse
🔥$85M class action settlement
🔥$18M proposed SEC settlement
🔥20-year FTC order
No cyber attacks, no hackers. Simply misleading, inaccurate marketing. COMPLETELY AVOIDABLE.
If your #SecurityComms strategy doesn’t cover PREVENTING self-inflicted incidents, hmu.
mashable.com/article/zoom...
🔥$18M proposed SEC settlement
🔥20-year FTC order
No cyber attacks, no hackers. Simply misleading, inaccurate marketing. COMPLETELY AVOIDABLE.
If your #SecurityComms strategy doesn’t cover PREVENTING self-inflicted incidents, hmu.
mashable.com/article/zoom...
Zoom lied about encryption in 2020. Now it wants to pay $18 million to make that go away.
The internet never forgets, though.
mashable.com
December 4, 2024 at 8:48 PM
🔥$85M class action settlement
🔥$18M proposed SEC settlement
🔥20-year FTC order
No cyber attacks, no hackers. Simply misleading, inaccurate marketing. COMPLETELY AVOIDABLE.
If your #SecurityComms strategy doesn’t cover PREVENTING self-inflicted incidents, hmu.
mashable.com/article/zoom...
🔥$18M proposed SEC settlement
🔥20-year FTC order
No cyber attacks, no hackers. Simply misleading, inaccurate marketing. COMPLETELY AVOIDABLE.
If your #SecurityComms strategy doesn’t cover PREVENTING self-inflicted incidents, hmu.
mashable.com/article/zoom...
Technical transparency isn't enough! 5 insights from yesterday’s web3 security comms drill:
• Layer explanations
• Make governance accessible
• Use consistent terminology
• Build trust proactively when it’s quiet
Join next week's #BugBounty comms drill!
#SecurityComms #IncidentResponse
• Layer explanations
• Make governance accessible
• Use consistent terminology
• Build trust proactively when it’s quiet
Join next week's #BugBounty comms drill!
#SecurityComms #IncidentResponse
Discernible Drills — Discernible Inc
discernibleinc.com
April 17, 2025 at 1:33 PM
Technical transparency isn't enough! 5 insights from yesterday’s web3 security comms drill:
• Layer explanations
• Make governance accessible
• Use consistent terminology
• Build trust proactively when it’s quiet
Join next week's #BugBounty comms drill!
#SecurityComms #IncidentResponse
• Layer explanations
• Make governance accessible
• Use consistent terminology
• Build trust proactively when it’s quiet
Join next week's #BugBounty comms drill!
#SecurityComms #IncidentResponse
🔥 New #SecurityComms drill!
This week, we test how teams handle security communications when public narratives clash with emerging technical findings.
Practice navigating these complex issues in our upcoming simulation!
Subscribe to join: DiscernibleInc.com/drills
#SecurityComms
This week, we test how teams handle security communications when public narratives clash with emerging technical findings.
Practice navigating these complex issues in our upcoming simulation!
Subscribe to join: DiscernibleInc.com/drills
#SecurityComms
May 13, 2025 at 3:15 PM
🔥 New #SecurityComms drill!
This week, we test how teams handle security communications when public narratives clash with emerging technical findings.
Practice navigating these complex issues in our upcoming simulation!
Subscribe to join: DiscernibleInc.com/drills
#SecurityComms
This week, we test how teams handle security communications when public narratives clash with emerging technical findings.
Practice navigating these complex issues in our upcoming simulation!
Subscribe to join: DiscernibleInc.com/drills
#SecurityComms
Hardest part of privacy incidents? Getting everyone on the same page.
Join our April 9th drill to practice navigating internal politics when privacy concerns clash with business goals.
Subscribe to our weekly simulations to participate: DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Join our April 9th drill to practice navigating internal politics when privacy concerns clash with business goals.
Subscribe to our weekly simulations to participate: DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
April 7, 2025 at 4:28 PM
Hardest part of privacy incidents? Getting everyone on the same page.
Join our April 9th drill to practice navigating internal politics when privacy concerns clash with business goals.
Subscribe to our weekly simulations to participate: DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Join our April 9th drill to practice navigating internal politics when privacy concerns clash with business goals.
Subscribe to our weekly simulations to participate: DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
🚨 Get your entries in before tomorrow’s deadline!
Tomorrow we’ll select winners for free subscriptions to our weekly IR comms drills!
Comment & tell us which of our blog posts you liked most.
Each comment = new entry
More participation = better chances!
#SecurityComms #PrivacyComms
Tomorrow we’ll select winners for free subscriptions to our weekly IR comms drills!
Comment & tell us which of our blog posts you liked most.
Each comment = new entry
More participation = better chances!
#SecurityComms #PrivacyComms
May 22, 2025 at 4:42 PM
🚨 Get your entries in before tomorrow’s deadline!
Tomorrow we’ll select winners for free subscriptions to our weekly IR comms drills!
Comment & tell us which of our blog posts you liked most.
Each comment = new entry
More participation = better chances!
#SecurityComms #PrivacyComms
Tomorrow we’ll select winners for free subscriptions to our weekly IR comms drills!
Comment & tell us which of our blog posts you liked most.
Each comment = new entry
More participation = better chances!
#SecurityComms #PrivacyComms
💫 New Discernible Drill this week!
You’ll face escalating challenges that force difficult tradeoffs between business continuity, stakeholder communications, and technical remediation - all while racing against the clock. 😰
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
You’ll face escalating challenges that force difficult tradeoffs between business continuity, stakeholder communications, and technical remediation - all while racing against the clock. 😰
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
May 20, 2025 at 11:38 PM
💫 New Discernible Drill this week!
You’ll face escalating challenges that force difficult tradeoffs between business continuity, stakeholder communications, and technical remediation - all while racing against the clock. 😰
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
You’ll face escalating challenges that force difficult tradeoffs between business continuity, stakeholder communications, and technical remediation - all while racing against the clock. 😰
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
A reader asked about communicating vulnerabilities to developers.
Shifting from triggering defensiveness to building psychological safety fixes vulnerabilities faster & creates partnerships that make everyone's job easier.
#AppSec #DevSecOps #SecurityComms
discernibleinc.com/blog/-mailba...
Shifting from triggering defensiveness to building psychological safety fixes vulnerabilities faster & creates partnerships that make everyone's job easier.
#AppSec #DevSecOps #SecurityComms
discernibleinc.com/blog/-mailba...
📬 Mailbag: What's the best approach for sharing vulnerability findings with developers to avoid inciting defensiveness? — Discernible Inc
Effectively communicating security vulnerabilities to development teams requires understanding emotional dynamics and reframing findings as opportunities rather than criticisms. By applying proven com...
discernibleinc.com
May 12, 2025 at 3:54 PM
A reader asked about communicating vulnerabilities to developers.
Shifting from triggering defensiveness to building psychological safety fixes vulnerabilities faster & creates partnerships that make everyone's job easier.
#AppSec #DevSecOps #SecurityComms
discernibleinc.com/blog/-mailba...
Shifting from triggering defensiveness to building psychological safety fixes vulnerabilities faster & creates partnerships that make everyone's job easier.
#AppSec #DevSecOps #SecurityComms
discernibleinc.com/blog/-mailba...
"Because of how Uber's PM ran our #bugbounty program, the moment the reporter reached out, I was able to respond effectively." Melanie Ensign on the value of collaboration in #securitycomms #cybersecurity #incidentresponse #CriticalPointWarStories
youtu.be/8Ltyei5e1UI
youtu.be/8Ltyei5e1UI
Bug Bounty, Incident Management - Melanie Ensign - They Called Her Christmas Day - w/ Kevin Riggle - YouTube
The reporter called her Christmas morning! This time on the Critical Point War Stories podcast, Kevin Riggle interviews Melanie Ensign (Discernible Inc.), f...
youtu.be
July 1, 2024 at 8:29 PM
"Because of how Uber's PM ran our #bugbounty program, the moment the reporter reached out, I was able to respond effectively." Melanie Ensign on the value of collaboration in #securitycomms #cybersecurity #incidentresponse #CriticalPointWarStories
youtu.be/8Ltyei5e1UI
youtu.be/8Ltyei5e1UI
🏁FINAL DAY OF OUR 5TH ANNIVERSARY GIVEAWAY 🏁
Last chance to enter: Comment with a blog post from our team that impacted your security practices, and tell us why it mattered.
Every comment increases your chances! Winners notified by end of day.
#InfoSec #IncidentResponse #SecurityComms
Last chance to enter: Comment with a blog post from our team that impacted your security practices, and tell us why it mattered.
Every comment increases your chances! Winners notified by end of day.
#InfoSec #IncidentResponse #SecurityComms
May 23, 2025 at 3:07 PM
🏁FINAL DAY OF OUR 5TH ANNIVERSARY GIVEAWAY 🏁
Last chance to enter: Comment with a blog post from our team that impacted your security practices, and tell us why it mattered.
Every comment increases your chances! Winners notified by end of day.
#InfoSec #IncidentResponse #SecurityComms
Last chance to enter: Comment with a blog post from our team that impacted your security practices, and tell us why it mattered.
Every comment increases your chances! Winners notified by end of day.
#InfoSec #IncidentResponse #SecurityComms
Successful vulnerability disclosure depends as much on emotional intelligence as technical skills. When researchers & security teams recognize information asymmetry & extend good faith, friction decreases.
Read more: discernibleinc.com/blog/breakin...
#infosec #BugBounty #SecurityComms
Read more: discernibleinc.com/blog/breakin...
#infosec #BugBounty #SecurityComms
Breaking Down Barriers: Insights from Our Recent Bug Bounty Communications Drill — Discernible Inc
Information asymmetry and mismatched expectations create unnecessary friction between security researchers and internal teams. Building trust through documentation, giving the benefit of the doubt, an...
discernibleinc.com
April 24, 2025 at 1:45 PM
Successful vulnerability disclosure depends as much on emotional intelligence as technical skills. When researchers & security teams recognize information asymmetry & extend good faith, friction decreases.
Read more: discernibleinc.com/blog/breakin...
#infosec #BugBounty #SecurityComms
Read more: discernibleinc.com/blog/breakin...
#infosec #BugBounty #SecurityComms
Cloudflare continues to be the standard of what a good security incident write up looks like in web2.
Plenty of other business practices to dislike, but on this point, they are leading the pack — by a lot.
Honest, meaningful, & technically sound.
#SecurityComms #IncidentComms
Plenty of other business practices to dislike, but on this point, they are leading the pack — by a lot.
Honest, meaningful, & technically sound.
#SecurityComms #IncidentComms
After Microsoft, now Cloudflare discloses an incident where it lost customer logs... for Microsoft this was weeks of logs... for Cloudflare only 3.5 hours
blog.cloudflare.com/cloudflare-i...
Cloudflare incident on November 14, 2024, resulting in lost logs
On November 14, 2024, Cloudflare experienced a Cloudflare Logs outage, impacting the majority of customers using these products. During the ~3.5 hours that these services were impacted, about 55% of t...
blog.cloudflare.com
November 26, 2024 at 6:50 PM
Cloudflare continues to be the standard of what a good security incident write up looks like in web2.
Plenty of other business practices to dislike, but on this point, they are leading the pack — by a lot.
Honest, meaningful, & technically sound.
#SecurityComms #IncidentComms
Plenty of other business practices to dislike, but on this point, they are leading the pack — by a lot.
Honest, meaningful, & technically sound.
#SecurityComms #IncidentComms
The average supply chain attack impacts 1,500+ organizations. Do you know how to communicate — & with whom — when it happens?
Join our Supply Chain Security Communications Drill on April 2.
Subscribe by March 31: discernibleinc.com/drills
#SecurityComms #SupplyChain #IncidentResponse
Join our Supply Chain Security Communications Drill on April 2.
Subscribe by March 31: discernibleinc.com/drills
#SecurityComms #SupplyChain #IncidentResponse
Discernible Drills — Discernible Inc
discernibleinc.com
March 26, 2025 at 3:41 PM
The average supply chain attack impacts 1,500+ organizations. Do you know how to communicate — & with whom — when it happens?
Join our Supply Chain Security Communications Drill on April 2.
Subscribe by March 31: discernibleinc.com/drills
#SecurityComms #SupplyChain #IncidentResponse
Join our Supply Chain Security Communications Drill on April 2.
Subscribe by March 31: discernibleinc.com/drills
#SecurityComms #SupplyChain #IncidentResponse
Most security teams ask "what could go wrong?" when planning incident response. But asking "what could go right?" changes how they prepare & opens up positive opportunities.
You can thrive (not just survive) through incidents.
#IncidentResponse #SecurityComms
discernibleinc.com/blog/what-co...
You can thrive (not just survive) through incidents.
#IncidentResponse #SecurityComms
discernibleinc.com/blog/what-co...
What Could Go Right? Transforming Incident Response Through Positive Framing — Discernible Inc
Security teams have long operated under "what could go wrong?" thinking, but this defensive mindset creates hidden pitfalls that limit our effectiveness and political capital within organizations. By ...
discernibleinc.com
May 27, 2025 at 1:23 PM
Most security teams ask "what could go wrong?" when planning incident response. But asking "what could go right?" changes how they prepare & opens up positive opportunities.
You can thrive (not just survive) through incidents.
#IncidentResponse #SecurityComms
discernibleinc.com/blog/what-co...
You can thrive (not just survive) through incidents.
#IncidentResponse #SecurityComms
discernibleinc.com/blog/what-co...
In light of recent revelations, our drill this week explores the critical communication challenges that come up after discovering a DPRK operative on your payroll.
Join us Wednesday (12pm ET) or Thursday (1pm PT).
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Join us Wednesday (12pm ET) or Thursday (1pm PT).
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
May 5, 2025 at 2:39 PM
In light of recent revelations, our drill this week explores the critical communication challenges that come up after discovering a DPRK operative on your payroll.
Join us Wednesday (12pm ET) or Thursday (1pm PT).
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms
Join us Wednesday (12pm ET) or Thursday (1pm PT).
Subscribe at DiscernibleInc.com/drills
#IncidentResponse #SecurityComms