With each passing hack, data breach, insider threat, exposure of personally identifiable information (PII), or other similar security slip, IT teams around the world are collectively holding their breath, waiting for that one inevitable question from their superiors: “If it were our company, could you stop an attack?”
The conversation usually goes one of two ways from there. The teams may answer with a mumbled “Probably not,” shielding themselves from the potential onslaught that might come with that admission. But they also could answer with an emphatic “Definitely not, and here’s why,” before going down the well-traveled path regarding the cost, complexity and lack of resources that they feel are stopping them from more effectively doing their jobs.