The onus of cybersecurity extends beyond all previous boundaries, and responsibilities no longer rest solely with uber geeks who engage in cyber warfare from sterile rooms with raised floors, whirring fans and blinking lights.
Read morePeople purchase insurance to shift liability—to literally shift the onus of financial responsibility in the wake of a devastating event. Whether by an individual or a national retail giant like The Home Depot, the decision to purchase insurance is based on many factors, including the cost of the insurance over time versus the cost of repair and potentially remuneration in the wake of a disaster. Is it cheaper to take out insurance against an event or to self-insure and absorb the cost immediately at the time the event occurs?
Read moreSometimes executives cut off communications with their IT/security staff because they seem to want to spend more money on IT solutions. While IT costs can be high, it is not always the case that building better security requires a layout of significant cash. In fact, it is possible to deploy reasonably resilient security without an overly burdensome security budget. We simply need to look for methods, techniques and tools that are less expensive and that take advantage of existing knowledge and technology.
Read moreSome executives do not see security as a key business function, rather as an IT only function. This is a mistake. Without good security throughout an organization, compromise will occur. This is one of the many topics that the security management team and the top level executives need to discuss is frank detail.
Read moreWhen designing security it is important to understand what you are attempting to protect as well as what you are protecting against. What you are protecting are your assets and business processes. An asset is anything used in a business task. Without assets your organization could not function and would not exist. Your business processes are the activities performed to accomplish your mission or goals as well as providing products or services to your customers. What you are protecting against are the threats that could harm your assets or interrupt your business tasks.
Read more