Related Posts
Subscribe via Email
Subscribe to our blog to get insights sent directly to your inbox.
Sponsor: https://nuharborsecurity.com
Contact Me: https://justinfimlaid.com/contact-me/
Twitter: @justinfimlaid
LinkedIn: https://www.linkedin.com/in/jfimlaid/
My opinion of
security has changed. We are not keeping up.
Companies keep getting breached.
First things first,
the idea and concepts of security have been around for a while. In the most general terms, truth is we have
senior industry and junior skill set.
Our collective
industry is not helping us be better.
Security product companies are coming to the market with new half
solutions and big marketing budgets.
Advisory companies are coming to the table with new buzzwords and hollow
concepts. And “thought
leaders” and “trusted advisors” are still trying to figure this
out, and probably not giving the best advice yet. All these things take our collective eye off
the ball, cause us to loose focus, and distract us from doing well at security
fundamentals.
For those listening
to this unfamiliar with our space, here’s some examples what we’re dealing
with:
Those are some
examples, but it’s not all bad. We need
stay focused though. In order for our security industry to get better we need
get back to basics of good security hygiene.
I admit this is easier said than done, its going to take time to get
there. Until we do this we can’t start
to think about automation because if you do crappy security and automate it,
security automation will allow you just do crappy security faster. You don’t need blockchain, if you don’t
believe it do some research in European Election Security…they use good
old-fashion asymmetric encryption. If
you’re getting started, or need a realignment go back the fundamentals, good
policy, good security architecture, good security hygiene of accounts,
etc. When you’ve done this, then
hopefully you have a good handle on requirements for security technology and
you have the expertise on how the technology should work in your environment.
Justin (he/him) is the founder and CEO of NuHarbor Security, where he continues to advance modern integrated cybersecurity services. He has over 20 years of cybersecurity experience, much of it earned while leading security efforts for multinational corporations, most recently serving as global CISO at Keurig Green Mountain Coffee. Justin serves multiple local organizations in the public interest, including his board membership at Champlain College.
Subscribe to our blog to get insights sent directly to your inbox.