Let’s get back to basics in 2012
The proliferation of security issues over the last decade is mind-boggling. Phishing, malware, malicious web sites and, more recently, targeted attacks such as Stuxnet and Duqu are keeping security specialists on their toes. Back in 2005, Symantec would identify and block approximately one such attack in a week. Now we block 20 threats per second on average.
Add to this other challenges such as new technology adoption such as cloud solutions, consolidation among businesses and budget cuts and it no wonder that those in our profession are often spreading themselves thin. As more people want to bring consumer mobile devices into the enterprise, who and how do you deal with accountability for security? And as businesses merge, how do security teams bring disparate security strategies together?
Well perhaps we can’t do it all; at least, not like we used to. In 2012 we have to go back to basics and work out a new way to deal with all of these issues. The world is changing so fast and the cracks are already beginning to show.
This means taking a step back from all the spinning plates that we have been served and working out where we can simplify and be more efficient both in terms of time and cost, while working out what the business really needs and then matching those demands.
Back to basics is all about taking a step back, assessing the business landscape, technology enablers and reviewing our security strategy. It’s all too easy to get caught up reacting to the current challenges that we end up with an ugly security elephant. By stepping back and consolidating the strategy, process and tools, it is possible to gain more consistent visibility of what’s going on so we, ultimately, get the right balance for a business.
I am sure that by the end of 2012 there will be 101 more issues to be dealing with, so let’s try to get our houses in order now to ensure the next 12 months become less not more daunting.
comments
Leave a Reply
-
Connect with us
-
Get Email Updates
-
Recently Posts
- The internet explodes with gTLDs
- Common Criteria EAL +3 Security Certification – What’s all the fuss about?
- Cyber crime: a real risk to global stability
- Let’s get back to basics in 2012
- The challenges of securing industrial control systems
- The Power of Collaboration Against Cybercrime
- A View from the London Conference on CyberSpace
- Safety first when going virtual
- #smbrisk – a great debate
- Tainted love….remembering the love bug of 2000
-
Pages
- announcements
- Application
- Availability
- backup
- botnet
- Cloud computing
- Complexity
- Compliance
- Consumerization
- cyber-crime
- data centre
- data-loss
- Denial of service
- disaster recovery
- Education
- Green IT
- impersonation
- Information Policy
- Insider
- IT equipment
- Miscellaneous
- misleading applications
- Patching
- Phishing
- Regulation
- Reputation
- SaaS
- security
- small business
- Social Media
- Spam
- Speaking
- Storage
- trojan
- Uncategorized
- Virtualization
- Virus
-
Blogroll
- Ask Marian Consumer Security Blog
- Bruce Schneier’s Blog
- Con Mallon’s Symantec Consumer Blog
- Gareth’s BE Blog
- Get Safe Online (The Blog)
- Gizmodo Gadget Blog
- Jonathan Schwartz’s Blog
- Phil Windley’s Technometria
- Security Bloggers Network
- Symantec French contributor - A blog from the French pen of Laurent Heslault
- Symantec Guide to Scary Internet Stuff – Botnets
- Symantec Guide to Scary Internet Stuff – Drive-by downloads - Video explaining the latest security threats in simple terms, on drive-by downloads
- Symantec Guide to Scary Internet Stuff – No 5 Rogue AV
- Symantec Guide to Scary Internet Stuff – No 6 Denial of Service Attacks
- Symantec Guide to Scary Internet Stuff – No7 Pests on your PC
- Symantec Guide to Scary Internet Stuff – No8 Losing your Data
- Symantec Guide to Scary Internet Stuff – Phishing
- Symantec Guide to Scary Internet Stuff – Underground Economy
- Symantec podcast channel - A channel of podcasts on current security and availability topics from the experts at Symantec
- Toby Stevens’ Data Trust Blog
