QOTD on CEO/Security Disconnect

What the [security] industry has generally missed is that it is the business information that should be protected, and not the physical assets that is used to store, process, or transmit the information. -- Gerry Chng, partner of advisory services at Ernst & Young.
Gerry Chng made another good point when he said, earlier in the article:
The disconnect seems to arise from the fact that IT is typically managed by technologists, who place emphasis on relying on technology to solve security issues. Over the years, we have seen the obsession with hype on technology, where IT tries to secure the infrastructure and tangible assets, [such as] data centers, servers [and] databases.
Src: IT security needs 'healthy' C-level tension | ZDNet Asia

1 comment:

LonerVamp said...

How dare we try to secure those!