1

Click here to load reader

BCS ITNow 201506 - Silver Bullet

Embed Size (px)

Citation preview

Page 1: BCS ITNow 201506 - Silver Bullet

Although vendors can have the tendency to present their technology as the silver bullet to solve your data and access management problems, it is only through integrating people, policy, process and technology that you can hope to address such a multi-faceted challenge. Technology should only be a means to an end.

Be it preventing data loss, providing secure remote working, ensuring mobile payment security, applying common policy

across diverse platforms, federating data sharing, or assuring end-points and supply chains, a holistic top-down approach is required, rather than a traditional IT-driven bottom-up one.

The organisation’s culture and risk management should determine the expected outcomes, driving the actions required to achieve them. Without getting the buy-in of management, staff and suppliers, and bringing along the journey, the so-called silver-bullet ends up as ammunition for corporate Russian roulette.

There then needs to be a clear understanding of the policies required to support the organisation’s desired outcomes, aligned with its risk appetite, which translate into the ‘rules’ that should be applied, through process, procedures, or technology. Some risks can also be managed through contracts and insurance.

Only once the above is in place, and

INFORMATION SECURITY

there are empowered and trained people in place, who understand the risks and means by which the organisation intends to treat them, can a technical solution be put in place. The solution should consider and address all end-to-end technical and non-technical threats and exposures.

When it comes to choosing technology solutions, don’t shoot yourself in the foot says Gareth Niblett, Chairman of the BCS Information Security Specialist Group.

Information Security Specialist Group (ISSG):www.bcs-issg.org.uk

Information Risk Management and Assurance Specialist Group:www.bcs.org/groups/irma

BCS Security Community of Expertise (SCoE):www.bcs.org/securitycommunity

FURTHER INFORMATION

doi:1

0.10

93/i

tnow

/bw

v037

©20

15 T

he B

ritis

h Co

mpu

ter

Soci

ety

Imag

e: iS

tock

/152

1268

75

22 ITNOW June 2015

SILVERBULLET

that your ENTIRE ORGANISATION is secure.It takes a FULLY TRAINED TEAM to ensure

Download to learn more.cert.isc2.org/infosecpros

INSPIRING A SAFE AND SECURE CYBER WORLD.

IT pros with informationsecurity skills have neverbeen more in demand.

Security isn’t just theresponsibility of informationsecurity leaders.

022-itnow-jun15-secintro.indd 2 06/05/2015 15:26:31

http://www.bcs-issg.org.uk
http://www.bcs.org/groups/irma
http://www.bcs.org/securitycommunity

BCS ITNow 201403 - Data Loss Prevention

BCS ITNow 201403 - Data Loss Prevention

Data & Analytics
Hurun Reportup.hurun.net/Hufiles/201506/20150617154827965.pdf · 2015-06-17Hurun Report

Hurun Reportup.hurun.net/Hufiles/201506/20150617154827965.pdf · 2015-06-17Hurun Report

Documents
DataSheet CINEO C2060 201506 RZ - idealreceiver.com

DataSheet CINEO C2060 201506 RZ - idealreceiver.com

Documents
Saimm 201506 jun

Saimm 201506 jun

Documents
NX-CIF Datasheet en 201506 P55I-E-02 Rev3 1

NX-CIF Datasheet en 201506 P55I-E-02 Rev3 1

Documents
India-201506-publication-150616final (1)

India-201506-publication-150616final (1)

Documents
Cgix 201506

Cgix 201506

Business
Shape au continuity income program 201506 07 jun jul

Shape au continuity income program 201506 07 jun jul

Documents
201506 Construction Executive Article - Develop Employees' Soft Skills That Matter

201506 Construction Executive Article - Develop Employees' Soft Skills That Matter

Documents
Revista ITNow Nov 2015

Revista ITNow Nov 2015

Documents
Hello world 201506 digital disruption

Hello world 201506 digital disruption

Presentations & Public Speaking
201506 The HighWay

201506 The HighWay

Documents
Kces 201506

Kces 201506

Documents
BCS Syllabus

BCS Syllabus

Documents
Elle Decoration Philippines 201506

Elle Decoration Philippines 201506

Documents
Security of Windows 10 IoT Core(FFRI Monthly Research 201506)

Security of Windows 10 IoT Core(FFRI Monthly Research 201506)

Technology
201506 Bookfair Poster

201506 Bookfair Poster

Documents
201506 voice for website

201506 voice for website

Spiritual
201506 advertising

201506 advertising

Documents
Oxys 201506

Oxys 201506

Business
Sbc newsletter 201506

Sbc newsletter 201506

Documents
Loddon Valley Link 201506 - June 2015

Loddon Valley Link 201506 - June 2015

Documents
BCS Profile

BCS Profile

Documents
BCS Brochure

BCS Brochure

Documents
Clpi 201506

Clpi 201506

Business
Pension plans and the writing of fully-covered exchange ... · -2-BasedonregulationsforclarifyingERISA'sprudencerequirement whichwereproposedbytheDepartmentofLaborinApril1978,itnow

Pension plans and the writing of fully-covered exchange ... · -2-BasedonregulationsforclarifyingERISA'sprudencerequirement whichwereproposedbytheDepartmentofLaborinApril1978,itnow

Documents
Ironridge Integrated Grounding Rails Installation Manual 201506

Ironridge Integrated Grounding Rails Installation Manual 201506

Documents
Monthly Issue 201506

Monthly Issue 201506

Documents
201506 Tennis Industry magazine

201506 Tennis Industry magazine

Documents
Biopharmaceutics Classification System (BCS) Biowaiver ... BCS Biowaiver Assessment... · Biopharmaceutics Classification System (BCS) Biowaiver Assessment Report ... Human absorption

Biopharmaceutics Classification System (BCS) Biowaiver ... BCS Biowaiver Assessment... · Biopharmaceutics Classification System (BCS) Biowaiver Assessment Report ... Human absorption

Documents