I promised some “thots and wheelings” on this yesterday. I was supposed to get markup into another doc, but I’m more of a stream kind of gal.

This isn’t comprehensive, mainly because I’m not picking the strategy apart, piece by piece. It’s not great, it’s not bad, and there’s room for improvement (the strategy and my commentary).

As with all, it’s a starting point to grow, fix, and redo again. It needs to be iterative and not dogmatic, which is what worries me about anything published by the government, mainly on how folks (individuals and industry) view things said by them.

https://medium.com/@webjedi/thots-on-the-national-cyber-security-strategy-26c6f9937fb2