For a long time, security was its own entity in the IT infrastructure. Security and IT didn’t always see eye to eye, and there were often points of contention. Nowadays, as collaboration between the two has become more common, both IT and security are combining forces to better understand the risks and threats to the enterprise. IT looks at security for expertise on finding weaknesses, how they can exploited, and how big that particular weakness or vulnerability is. Security needs IT to help implement proper controls.
As this collaboration increases, there are four ways for security professionals to better understand the relationship between security and IT (and even the business) in order to better protect the enterprise and make themselves more valuable to their companies in the process: