Member-only story
Simple to talk about, but hard to do
There’s a shortage of cyber security talent right now, and the shortage is likely to be a problem for the next couple of years, at least. So what can you do right now to improve the security of your company’s information? For starters, do these three things.
1. Adequately fund Information Services
Security isn’t free. It takes time, money, and resources. If your billing system couldn’t generate accurate invoices, you’d find a way to pay for the upgrades wouldn’t you? Well, if your information is at risk, your bottom line is at risk, just as surely as if you couldn’t generate accurate invoices. Find a way to fund security.
2. Adequately staff Information Services
Most IT groups are caught in a bind. They’ve been told, “No overtime until further notice.” And their priorities have been made clear: “Fix these slow network bottlenecks.” And so what gets put off until tomorrow, every single day? Oh, things like reading security logs, penetration testing, software updates. You know. The things that make your network more secure. If Information Services is understaffed, I guarantee your security is less than optimal.
3. Adequately train all employees