banner

Making the Case for Security

Written by Cio
business-meeting-people-silhouettes-100572628-primary.idge
  • Cio
  • 3 years ago
Having been at my new company for several months now, this week I was invited to inform executive management about the state of our security. I had half an hour to formally introduce myself and talk about my philosophy, my initial findings and the priorities I think we need to have.Thirty minutes isn’t much time, of course, and I figured that I should be prepared to talk for just 15 minutes, so that I could give the team time to ask questions. I had to make that quarter of an hour really count.

Before me were the CEO, the CIO, the CFO, the CTO and the vice presidents of sales, marketing, support and operations. I told them that I had been working in security long enough to know what sorts of things work. There’s the rule of least privilege, which enforces access controls based on granting only those privileges that any individual needs. There’s security awareness and the idea that changing employees’ behavior is one of the most crucial ingredients of strong security. There’s the acknowledgment that we’re only as strong as our weakest link. There’s the all-important realization that security is a process, not a point solution.

Read More

0 0
Article Tags:
·
Article Categories:
Security

Leave a Comment

Your email address will not be published. Required fields are marked *