That's right. Security works. Your enterprise security program works.
Consider the following question. What part of the attacks that hit your perimeter does it resist?
a) None of them
b) Few of them
c) Enough of them
d) Most of them
e) All of them
Most of you said "c" or "d." We call that "working."
A few of you may argue that only "e" can be called working, to which I respond, "Be careful what you ask for, you might get it."
Do you know how to resist even more attack traffic? If that were the only objective, of course you do. You do not do it because resisting attack traffic is not the only objective. Even resisting "most attacks" involves at least slowing, if not rejecting, some legitimate traffic. It may also involve tolerating a resourceful attack.
Said another way, within the tough choices that face you, the security perimeter is doing what you intend. We call that "working."
Security is a hard problem; there are no perfect solutions. It requires the exercise of informed judgment. That is why we are called professionals and are paid the big bucks. Such as we are and given the conditions that we face, we do the best we can. That is called "working."
Subscribe To Thinking about Security
Posts
Comments
About Me
- William Hugh Murray, CISSP
- Bill Murray is a management consultant and trainer in Information Assurance specializing in policy, governance, and applications. He is Certified Information Security Professional (CISSP) and chairman of the Governance and Professional Practices committees of (ISC)2, the certifying body, He has more than fifty years experience in information technology and more than forty years in security. During more than twenty-five years with IBM his management responsibilities included development of access control programs, advising IBM customers on security, and the articulation of the IBM security product plan. He is the author of the IBM publication Information System Security Controls and Procedures. He has been recognized as a founder of the systems audit field and by Information Security Magazine as a Pioneer in Computer Security. In 1999 he was elected a Distinguished Fellow of the Information System Security Association. In 2007 he received the Harold F. Tipton Award in recognition of his lifetime achievement and contribution. In 2016 he was inducted into the National Cyber Security Hall of Fame. In 2018 he was elected a Fellow of (ISC)^2.
No comments:
Post a Comment