1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

IDG Contributor Network: Preventing data breaches is a business problem not an IT issue

Discussion in 'CSO' started by RSS, Jan 12, 2016.

  1. RSS

    RSS New Member Member

    I don’t have to tell you about the latest data breach, it’s like the evening news we have become numb to all the carnage. Target, Home Depot, Sony, IRS, OPM, Anthem, Experian, Scott Trade, the breach list is endless.

    But what is the root cause of these data breaches? Is it people, processes or technology or all of the above?

    ALSO ON CSO: The 15 worst data security breaches of the 21st century

    As we in Audit look at people, processes and technology, we must at some point be able to tell organizations that the IT director can’t also be the chief security officer and the IT manager can’t be the systems admin, security engineer and the security analyst. Also IT should not be procuring all audits, the board and the CEO must be leading this effort. Otherwise it’s not likely to be very balanced or meaningful.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page