So now the question becomes, how do we measure our “security debt” when performing an audit? Because we really need to realize that our debt will be paid by our partners and our customers. It is commonly skipped over that the penalty for not securing our systems, sadly, is never paid by the people who chose not to secure the systems.
Similar posts
encryption
Why Target's Breach Included PIN Data
Last Friday Target issued an update acknowledging that encrypted PIN data were included in the data stolen in their recent breach. This quickly...
Nathan Sweaney
Dec 31, 2013
Red Teaming - Not What You May Have Thought
Lately, I’ve been doing a lot of reading on some less technical topics and I ran across “Red Team: How to Succeed By Thinking Like the Enemy”...
Jason Wood
Jan 27, 2016
Secure Ideas is Offering a Free Secure Coding Class
SECURE IDEAS IS OFFERING A FREE SECURE CODING CLASS You see it the news all the time. Websites are getting hacked, data is being stolen, and revenue...
Nathan Sweaney
Nov 22, 2013
Compliance is not Security
Many folks get confused about the difference between security and compliance. Many, especially those less technically inclined, assume that...
Nathan Sweaney
Nov 29, 2018