Security Business Challenges

-

 

TENSION BETWEEN SECURITY AND PRODUCTIVITY

  • Security and productivity are often diametrically opposed
  • Security measures tend to drive up costs, slow down progress, and add steps
  • Vendors often claim their security technology is seamless and invisible to users, but it requires installation, upgrades, and operation
  • It is almost impossible to add security to an enterprise without impacting productivity in some way

MAXIMUM ALLOWABLE RISK

  • Cutting the security budget and balancing security capabilities against risks encompass the concept of maximum allowable risk (in other words, how much security risk is acceptable?).
  • Enterprises use metrics (such as probes, attacks, and intrusions), in part, to show management how the security risks are being stopped/mitigated
  • Metrics help everyone understand how close the enterprise is operating to a potential cybersecurity disaster.
 
SECURITY EFFECTIVENESS OVER TIME
  • An enterprise’s security posture effectiveness is not static and is subject to factors within and outside of its control
  • Emerging vulnerabilities, setbacks, and mistakes impact security effectiveness
  • Audits/projects identify and remediate security program issues.
 
SECURITY TOTAL COST OF OWNERSHIP
Total Cost of Ownership (TCO) consists of multiple cost components
  • –Installing, maintaining, and operating enterprise security controls 
  • –Maintaining/initiating an incident response capability and restoring normal operations 
  • –Remediating lost productivity due to not having necessary privileges, requesting access, or processing policy exceptions

SECURITY TOTAL COST OF OWNERSHIP

Prevention Security Profile vs. Detection and Response Security Profile 
  • Prevention suggests large numbers of security controls resulting in large amounts of lost productivity due to requesting permissions, re-certifying accesses, and interacting with security controls.
  • Detection and response suggest the enterprise will have cheaper controls and less lost productivity due to fewer personnel maintaining firewall rules or re-certifying accesses permissions, but they will require more incident response resources. 
  • It is important for an enterprise to consider TCO when evaluating its cybersecurity program.



#DigitalTransformation
#Digitalization
#Digitization
#Transformation
#Training
#التحول الرقمي
#الرقمنة
#التدريب
#EnterpriseArchitecture
#Security
#InformationSecurity
#Innovation
#ArtificialIntelligence

Comments

Post a Comment

Popular posts from this blog

Benefits of SMS Marketing for Small Business

-
Image
Tweet Benefits of SMS Marketing for Small Business Compared to other forms of advertising, SMS marketing provides the lowest cost and highest return rate that is crucial in today’s shrinking economy and budgets. Most have cut back on traditional marketing due to costs. But that just drives down your sales. SMS marketing scales with your campaign and sales growth making the ROI higher the larger you grow, not the other way around. SMS marketing is also permission based. The customer has given you permission to contact them through our SMS platform. Customers that opt-in to receive information are most likely to buy over someone who receives a direct mail piece, reads your ad in the newspaper or hears your ad on the radio. Other main advantages of SMS marketing over traditional advertising: Cost:   The larger your campaign gets, the lower the costs become on a per customer basis. Reach: Your customer’s always have their mobile phone with them. No matter where
Read more

SETUP AND CREATE YOUR BUSINESS MARKETING BLOG

-
Image
Tweet Web logs or ‘ blogs ’ are best known as an easy method of publishing personal web pages which are online journals or diaries. But the power of business blogs, which are created by people within an organization, is often underestimated. Business blogs can be created by individuals, but they are often best with features from different columnists on different types of topics. This way, different columnists can specialize on different features or viewpoints just as for a magazine. If you think this way, they are a means of making an e-newsletter more interactive and more topical. Blogging software is incredibly good value, with many free tools. The following options can be considered when setup your blog: 1-         Moderation : Either open or closed to comments, with or without a moderator. Star rating of posts is a good option. 2-        Frequency : Five to twenty posts per month would be typical for a company site unless posted in multiple categories for a new sit
Read more

De Kare-Silver’s electronic shopping test

-
Image
Tweet Consumer electronic shopping analysis using De Kare-Silver’ factors that should be considered in the electronic shopping test: 1- The Characteristics of the product. a. Does the product need to be physically tried? or b. Touched before it is bought? 2- The degree of confidence and Familiarity  To which degree the consumer recognizes and trusts the product or brand. 3- The attributes of the consumer:  - Technology accessibility  - Skills available   - Willingness to shop for a product in a traditional retail environment To measure the suitability of buying a product online ranked as below and given a score out of 50: Typical results from the evaluation, where products are scored out of 50 for suitability for electronic commerce, are: - Books (38/50)  - Travel (31/50) - Groceries (27/50) - Mortgages (15/50) The product achieved a score higher than 20 has good potential as per  De Kare-Silver, and he suggested also that the companies m
Read more