Technology is not the biggest security problem: CompTIA:
There is a misconception that technology represents the greatest
security risk for companies, but it is only part of the problem,
according to CompTIA.
The association of the industry, said companies often leave them vulnerable to violations of information, despite the technology, but said there are ways to reduce risk.
CompTIA member communities vice president Jim Hamilton said an area where businesses are leaving themselves vulnerable due to lack of security policies.
He said then that all firms must have strong security policies across the enterprise, in reality, many companies do not implement policies after a violation occurs.
"Awareness creates action, which is very valuable to strengthen security. Companies should use strategies to raise awareness through systematic implementation updating and communicating, rather than wait for the breach of cyber security," he said.
According to Hamilton, the implementation of strict policies design can be difficult to reconcile with the ease of use and practicality especially since many employees use their own devices and applications at work, which can make the entire IT landscape more difficult handle.
"As organizations adopt cloud solutions and mobile technology, extended the security perimeter, creating new considerations. And, with the rise of the Internet of Things (IoT) there are many devices built without the security of a system computer company, "he said.
n addition, Hamilton said companies must ensure that their security systems and keep policies as technology changes rapidly.
"If you only do a security audit every five years, it will become obsolete very quickly. Companies also need to be more proactive about testing their resilience in an increasingly complex environment. People take risks save time and money, but if something could lose a lot more than keep happening, "he said.
Hamilton also addressed the need for companies to make employees part of the solution.
"Human error is often the cause of problems with data security due to negligence, breach of policies and the lack of catch up on new threats. Obviously, more training is needed for employees. Staff are totally certified by the nature but security guards must now be a concern for everyone, and training should follow suit, "he added
The association of the industry, said companies often leave them vulnerable to violations of information, despite the technology, but said there are ways to reduce risk.
CompTIA member communities vice president Jim Hamilton said an area where businesses are leaving themselves vulnerable due to lack of security policies.
He said then that all firms must have strong security policies across the enterprise, in reality, many companies do not implement policies after a violation occurs.
"Awareness creates action, which is very valuable to strengthen security. Companies should use strategies to raise awareness through systematic implementation updating and communicating, rather than wait for the breach of cyber security," he said.
According to Hamilton, the implementation of strict policies design can be difficult to reconcile with the ease of use and practicality especially since many employees use their own devices and applications at work, which can make the entire IT landscape more difficult handle.
"As organizations adopt cloud solutions and mobile technology, extended the security perimeter, creating new considerations. And, with the rise of the Internet of Things (IoT) there are many devices built without the security of a system computer company, "he said.
n addition, Hamilton said companies must ensure that their security systems and keep policies as technology changes rapidly.
"If you only do a security audit every five years, it will become obsolete very quickly. Companies also need to be more proactive about testing their resilience in an increasingly complex environment. People take risks save time and money, but if something could lose a lot more than keep happening, "he said.
Hamilton also addressed the need for companies to make employees part of the solution.
"Human error is often the cause of problems with data security due to negligence, breach of policies and the lack of catch up on new threats. Obviously, more training is needed for employees. Staff are totally certified by the nature but security guards must now be a concern for everyone, and training should follow suit, "he added
No comments:
Post a Comment
Note: only a member of this blog may post a comment.