12.04.06
Are We There Yet?
rpoppa, a colleague of mine at nCircle, has written a rather interesting blog post on The Successes and Failures of the Security Industry. I recommend that everyone go over and give it a read.
The post covers 15 "statements" about security and then uses a paragraph or two to delve more deeply into each of them. The statements are:
1) Today feels a lot like yesterday
2) The role of a Security Professional
3) There are too many so-called "Security Professionals"!
4) Security Breeds Apathy.
5) Security can be overwhelming
6) People are afraid of what they don't understand.
7) Security is not seamless.
End users are ignorant
9) Not all security is right for you.
10) The World is a War Zone
11) It is no longer about the Chase, it is about the Money!
12) Attacks are Polymorphic.
13) Vendors and Security don't match.
14) The industry is immature
15) 2+2=1
So go give it a read and then leave your feedback and comments.
Peace,
HT
