What IT security professionals can learn from Click Frenzy

Aside from the hard lesson learned that failure to plan and prepare will most certainly lead to disaster, there are some important lessons on governing and best practice implementation security professionals need to take from the Click Frenzy event, according to cloud computing and security experts.

For cloud analyst Rob Livingstone, the experience underlined the importance of several common-sense guidelines that are well known in the industry.

“The Click Frenzy meltdown is a classic case as to why and where appropriately selected, well designed cloud-based infrastructure and applications should be used,” said Livingstone.

“It’s a textbook case – the need for rapid deployment and a highly volatile demand requiring significant scalability, all in a secure and trusted environment. The implementation appears to have failed on all counts,” he said.

Adam Biviano, senior manager, strategic products for Trend Micro, was surprised that such a high-profile event was able to disintegrate so quickly.

“The marketing of the campaign was obviously a success, with huge levels of interest from retailers and consumers leading up to the launch,” said Biviano.

“Online retailing, however, is far more than having good-looking websites and drumming up demand. Often there’s an underlying mentality that the look and feel of websites come first, with the quality and efficiency of the underlying infrastructure coming second, which is asking for trouble – the kind of trouble illustrated so dramatically in Click Frenzy,” said Biviano.

Biviano believes that online retailers, and cloud providers in general, have to understand the dynamics at play of the online marketplace, and provide appropriate investment for availability and security.

“The huge public response showed strong confidence in e-retailing. But confidence can be easily undermined, and reports of a leaked customer database showed that you cannot cut corners when it comes to security structure and processes,” said Biviano.

“The opportunities that cloud represents to business in terms of agility and earning potential is amazing, but the cloud will also slap you down if it’s not implemented correctly,” he said.

Follow @CSO_Australia and sign up to the CSO Australia newsletter.

Tags best practicesClick Frenzygovernance

Comments

Comments are now closed

CSO Corporate Partners
  • f5
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Cloud Security for Enterprise

Encrypt data with easy-to-use key management for virtual, private, and public cloud environments with Trend Micro SecureCloud™.

Security Awareness Tip
Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.