Life for a CISO could be better. Too many today look out over an landscape overrun by poorly-deployed security tools consuming too many scarce resources, and a dynamic between IT and security that is skeptical at best and distrustful at worst.
This longstanding situation comes from a short-term, tactical and project-driven approach to IT security. For years, projects have been designed to deliver a point solution to a particular problem, resulting over time in an overabundance of solutions. Very often, these are only partially deployed or implemented, but each served a purpose once, either as a “tick-in-a-box” on some audit report, or as a pet project for a long-gone CISO.
No comments:
Post a Comment