, 2004-03-15
When everyone in the security world has something to sell, it's harder than ever to get straight answers about genuine threats.
Expand all |
Post comment
Wow - that was actually a decent read!
2004-03-15
Penguinisto (1 replies)
Penguinisto (1 replies)
How about teaching our customers how to make better decisions about the threats that face them, by actually having them do an analysis of their business and creating a security policy so there is less of a question what the priorities are. By having management address these issues first you can come up with a strategy to defend against these vulnerabilities. These issues will explained to management and easier to prioritize if the management has a matrix to look at and then determine the higest threat.
If the IT people are making decisions about threats based on vendor market hype they are doing things incorrectly.
Can you please explain how changing the way information is dispensed will help these poor confused customer of ours?
How about teaching clients about vulnerability assessment and explain to them that vendor hype is just that.
sald@soap-box.com
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/225/25368#25368