How CIOs Are Making Security an Enterprise Necessity
- 30 November, 2012 14:31
So, a guy walks up to another guy who is clapping. The first guy asks, "Why are you clapping?" The second one answers, "To keep the alligators away." Confused, the first guy says, "But there are no alligators around here." And the second says, "See? It's working!"
Such is the situation that many CIOs find themselves in when selling IT security to the executive committee. "When the CIO says, 'I'd like to spend this amount on security,' it's rarely, 'Are you sure you're spending enough?'" says Steve Rubinow, CIO of FXall, an electronic foreign exchange platform. "Instead it's, 'We haven't had any problems; maybe you're spending too much!'"
The ROI Paradox. Perhaps the clearest aspect of the IT security paradox is this: "There is no easy ROI on security." And, says Rubinow, you cannot guarantee that your systems are 100 percent secure. Plus, security threats can be subtle, with countries targeting intellectual property, not customer data.
- Week in review: Great Bitcoin Robbery highlights shopping-season security risks
- Web proxy app becomes Bitcoin mining trojan
- Appoint a cloud purchasing 'czar' as business-cloud mediator: Stewart-Rattray
- Victorian government unprepared for ICT security breaches: audit
- Melbourne Uni CSO's three rules to managing cloud security: assess, assess, assess
Cloud offers promise as security-management umbrella: Sophos CEO
Cal Poly joins national cybersecurity educational effort
How to secure passwords and other critical numbers
Nobody practices real security: David Lacey
Hackers claim they used zero-day vulnerability to breach vBulletin support forum