ABSTRACT
The disciplines within the field of information security have certainly changed over the years as the threats facing organizations have evolved and become much more complex. Traditional security models with heavy emphasis on ‘the perimeter’ would focus on getting into the fort through the doors and windows; however, that’s no longer enough. As the lines of demarcation for the perimeter have vanished, today’s security programs must recognize that threats can come from anywhere. With that, the right mix of skilled professionals, technology, security policies, disciplined practices and strong user awareness are needed to effectively defend against the threat landscape.
Having spent the past 20+ years as an information security practitioner in corporate environments, I’ve recognized that the only way to have a fighting chance of successfully protecting your assets is your ability to evolve. Many recognized security leaders will say “it’s not if, it’s when” an organization will suffer from a security event.
