I am always amazed at the number of folks that think of security in terms of firewalls or anti-spyware software – a Band-Aid on an ever-growing problem that is often an issue that lies dormant until no one is watching.
Security is an IT strategy – it is a multi-layered defense strategy that keeps you ahead of the curve – ahead of next generation threats – and out of the headlines.
In the last couple of weeks we heard about security breaches such as Hannaford’s supermarkets who is now being hit with countless class action lawsuits involving the compromise of over 4 million credit and debit cards; and Lasell College, who recently notified over 20,000 individuals (current students, alumni, existing and former faculty and staff) that their personal information, namely their social security numbers were exposed during a recent cyber intrusion.
I guess the primary reason for security still being an afterthought, or my perception that it is still an afterthought, is really an understanding of HOW these attacks are carried out. It is the opinion of most individuals that attacks are focused, and hackers know who they are targeting, when in fact they do not. Attacks are launched, and a small mom and pop is just as likely to become a target as any other company with a website. Attacks are most often random, and performed shotgun style. Another reason I believe security is an afterthought, and this is greatly substantiated from my years of research, is that folks just do not have the time to deal with it on a proactive basis, leaving the action items to be carried out when folks can get to it. But just “getting to it” isn’t enough – like many things it must be prioritized….you can see what happens when it isn’t.
I have many of my clients engage NetTeks to do this for them, because with the millions of technology-type decisions that need to be made, and the equally important tasks that need to be performed there just isn’t enough time in the day – so we do it for them. We tell them what to worry about and when, and most times perform the necessary tasks to get them back on track. We monitor their devices ‘round the clock, so they don’t have to, and can cross a very big to-do off their list…they love that!
So, the NetPerspective is to give Security the attention it requires or give it to someone who can do a diligent and consistent job for you. Ensure if you do outsource to a provider, they offer you consistent reporting metrics so that you know what you are paying for – and what intrusions you have avoided. Ensure that your provider has a consistently tested process in place, so that if something does go bump in the night, they are prepared to respond in a timely fashion. Timing, especially in the discipline of Security is everything.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment