‘What 2 things are most likely to change the security industry in the next 2 years? And why?’
The need to align, create, measure, and effectively communicate value within the organization.
This is a break from the silo approach most organizations practice today. For security to be successful, it must be integrated. To be integrated, the value it offers must resonate on an individual basis while aligned with the needs of the organization.
To get funding, security efforts must increase the value of the organization. Demonstrating that value requires a different approach to communication; it means learning to ask different questions, understand the business and avoid confusing jargon.
Ultimately, security needs to change approaches to influence behavior change in the organization.
The need to change strategies, tactics, and technologies to match the world in which we operate.
The other day we visited a local flea market. My children asked if we could look for a bayonet. When I asked why, they explained they were studying the trench warfare of World War I, and wanted to see a real bayonet. While our search was unsuccessful, it prompted more questions and their realization that military wars have changed over time.
Against the backdrop of vendors hawking their wares, it hit me that we face the same challenge of strategy and tactics in security. And while I prefer to avoid “security as war” analogies, the thrust of the changing times driving a change in technologies and tactics is solid.
The technologies and approaches relied on dogmatically across the spectrum of information security were largely developed in a different time, facing different challenges.
While some of the challenges persist, the nature of the world in which we live, the ease of bad actors, and the changing nature of business suggest that the industry needs a different way to offer “security.”
It’s a hard change. It’ll likely involve a lot of teeth-gnashing, complaints, and protests. Those who make the turn quickest are likely to yield the biggest returns
Michael Santarcangelo | Security Catalyst | Catalyst • Writer • Speaker | @catalyst
To find out more about our panel members visit the biographies page.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.