/>
X

Is there really a need for business cases?

Most of the premise of this week's Security Standard conference in Boston appears to be that CIO's, CSO's and IT security practitioners have to treat security as a business process just like any other.  My perspective is that treating IT security like a business process is like treating a tactical military strike force as a business.
zd-defaultauthor-richard-stiennon.jpg
Written by Richard Stiennon on

Most of the premise of this week's Security Standard conference in Boston appears to be that CIO's, CSO's and IT security practitioners have to treat security as a business process just like any other.  My perspective is that treating IT security like a business process is like treating a tactical military strike force as a business.  While maintaining the capability of military forces could be a process open for improvement by applying some business discipline, actually fighting battles and overcoming opposing forces does not have much of the "business process" about it.  Security is much more akin to fighting a battle than it is to "aligning business objectives".

I have a feeling that the actual content of this conference will be a little more pithy.  Stay tuned as I continue to blog LIVE from Hynes Center in Boston.

 

Related

Are you ready for the worst Economy Class airline seats in the world?
airline-seats.jpg

Are you ready for the worst Economy Class airline seats in the world?

Business
Microsoft Azure-certified roles are well-paid, and you can study for certification for $39
replace-this-image.jpg

Microsoft Azure-certified roles are well-paid, and you can study for certification for $39

Deals
Here's how Apple tells if you've dropped your iPhone into water
Liquid Contact Indicator stickers

Here's how Apple tells if you've dropped your iPhone into water

iPhone