While the Security 500 may have CSOs, CISOs and CIOs leveraging state-of-the art-technology to prevent cybercrime, the real arms race is upon the Security 50,000 (small and medium business or SMBs). And while the large organizations, if impacted, will have sway with their banks and made whole, the SMBs are more likely to end up the victim of crime, often without recourse.
As Cloud Computing becomes the new platform for many aspects of our lives, from Google Mail to iTunes to banking and more, the discussion specific to security tends to focus on the What. It may be helpful to look at the Why.
The 2011 Security 500 survey conducted last spring identified that only 19 percent of Security 500 CSOs manage cyber security at their organizations. By the November 2011 Security 500 conference, we had an overwhelming request among attendees for cyber security sessions.
During the past year I have had the wonderful opportunity to meet and interview the best and brightest CSOs. Each was asked what every CEO should understand about security. Their ideas, advice and wisdom are shared with you in this month’s column. What should your CEO know? Share it with us at mccourtm@bnpmedia.com
Witness, if you will, 50 years of security art and science collapsed into the post 9/11 decade. When the dot com era burst, many venture dollars were looking for a place to work. 9/11, sadly, happened and was followed by many changes, including the creation of DHS and the promises to “inspect every bag at airports,” which led to the venture capital and curious question: Inspect them with what? The need rose, the money poured in. Innovation followed.
During the many conversations we have during the Security 500 research survey and interview process, one trend we do not include in the findings is how busy you are keeping your heads above water. A consequence of being more than fully employed is that many readers tell me that staying current with new trends, technologies and best practices is a constant challenge.
"When I was growing up in New Jersey, going to the World Trade Center was a school trip,” I said to Lou Barani. “And it will be again,” he replied with enthusiasm and a smile as we walked through the 9/11 Museum, which is in the midst of construction and scheduled to open in 2012. Once it’s complete, expectations are for more than 1,500 visitors each hour.
During the recent federal government budget debates, the “peace dividend” of the 1990s was mentioned a few times. Does the U.S. get a “war dividend” in the risk/reward decision of business location and expansion?
Will the next budget go around cloud your executive career aspirations? Think ahead to this fall, when you are at the round table patiently waiting your turn to present your strategy, plan and budget, including your CapEx request. Surely, you have worked hard on the budget this year. Zero-based it? Completed risk assessments? Tied the security processes to measurable business benefits?
For those of you who do not know the name, Bryan Stow, I encourage you to learn about him and how disrespect for all things related to risk management and resultant poor security programs should be a lesson to those that approve your budget. Stow is one of the reasons Frank McCourt lost control of the Los Angeles Dodgers (no relation by the way...the Dodgers are not my fault).