cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Community Champion

Is security creeping out of the shadows yay or nay?

Hi All  A lot of have been involved in security for many decades, and we have seen much change?

 

But is it really creeping out of the shadows?

 

https://www.csoonline.com/article/3526478/why-security-is-creeping-out-of-the-shadows.html?utm_sourc...

 

What is your opinion?

 

Regards

 

Caute_cautim

 

 

2 Replies
Highlighted
Community Champion

Re: Is security creeping out of the shadows yay or nay?

So my nickel Canadian......

 

I think it is creeping out of the shadows but believe that is being caused by all the noise, etc. being generated by Ransomware and a lot of the new regulations that are now facing organizations (GDPR, CCPA, HIPAA, etc....).  Sarbannes-Oxley started us down the path but the latest additions have pushed us over the top.

 

Iin the past, we could talk to management about Security and the issues (the risk, the threat), etc. and were mostly ignored.  We did get attention if there was a breach (either ours or close to home) but then when the buzz died down so did the funds and the attention.

 

Board audit committees are actively asking questions about how organizations are protecting themselve and staying within the letter of the law.

 

So, I would vote "Yay"

 

Regards

 

d

 

Highlighted
Community Champion

Re: Is security creeping out of the shadows yay or nay?

 

Hell yay.  Some years back the decision-makers in environments I worked in would see Information Security as an unnecessary expense --- their usual attitude was 'leave well enough alone' or 'if it isn't broken don't fix it.'

 

Nowadays, it's seen as essential, particularly because regulatory authorities mandate it --- at least where I'm based right now. (Saudi Arabia)

 

In the event of attacks on the IT infrastructure, the stakeholders may have to justify the inadequacy of compliance with IT security requirements.

 

 

 

Shannon D'Cruz,
CISM, CISSP

www.linkedin.com/in/shannondcruz