Is security creeping out of the shadows yay or nay...

Caute_cautim · ‎02-13-2020

Hi All A lot of have been involved in security for many decades, and we have seen much change?

But is it really creeping out of the shadows?

https://www.csoonline.com/article/3526478/why-security-is-creeping-out-of-the-shadows.html?utm_sourc...

What is your opinion?

Regards

Caute_cautim

dcontesti · ‎02-14-2020

So my nickel Canadian......

I think it is creeping out of the shadows but believe that is being caused by all the noise, etc. being generated by Ransomware and a lot of the new regulations that are now facing organizations (GDPR, CCPA, HIPAA, etc....). Sarbannes-Oxley started us down the path but the latest additions have pushed us over the top.

Iin the past, we could talk to management about Security and the issues (the risk, the threat), etc. and were mostly ignored. We did get attention if there was a breach (either ours or close to home) but then when the buzz died down so did the funds and the attention.

Board audit committees are actively asking questions about how organizations are protecting themselve and staying within the letter of the law.

So, I would vote "Yay"

Regards

d

Shannon · ‎03-07-2020

Hell yay. Some years back the decision-makers in environments I worked in would see Information Security as an unnecessary expense --- their usual attitude was 'leave well enough alone' or 'if it isn't broken don't fix it.'

Nowadays, it's seen as essential, particularly because regulatory authorities mandate it --- at least where I'm based right now. (Saudi Arabia)

In the event of attacks on the IT infrastructure, the stakeholders may have to justify the inadequacy of compliance with IT security requirements.

Shannon D'Cruz,
CISM, CISSP

www.linkedin.com/in/shannondcruz

Is security creeping out of the shadows yay or nay?