Making the Business Case for Information Security.

We have detected that your web browser does not have JavaScript enabled.

To view Goliath's company profiles, news and business information, please enable JavaScript now.

Making the Business Case for Information Security.(Feature)

Publication: Security Technology & Design
Publication Date: 01-MAR-08

Format: Online
Delivery: Immediate Online Access

Article Excerpt
Making the Business Case for Information Security

By Kevin Beaver, CISSP

You must master the art of selling security if you really want to prove ROI

James Champy once said, "Many executives are insulated from reality and consequently don't know what the hell is going on." I of a...

View more below

You can view this article PLUS...

Hundreds of the most trusted magazines, newspapers, newswires, and journals (see list)
Business news from North America and around the World
More than 10 years of article archives
Unlimited Access at any time - ONLINE and all in ONE place

Now for a Limited Time, try Goliath Business News - Free for 7 Days!
Tell Me More Terms and Conditions

Already a subscriber?
Log in to view full article

Purchase this article for $4.95

...can't think better real-world example of this than management's relationship with information security. It's a problem that affects practically every business, every non-profit and every government agency. And it's also one of the greatest barriers to success we have in our jobs as security professionals.

This problem will be a thing of the past in a few decades, but right now, we have a lot of old-school managers faced with new world technology-based realities -- and they often don't mix well.

But who's really at fault here? Do we blame management for burying their heads in the sand, claiming that there's nothing on the network of any value that the bad guys would want? Or, do we take a good look at ourselves and consider that perhaps we're part of the problem? I think the true answer is a lot of both.

Everyone -- management, IT, physical security, you name it -- has their own opinions and beliefs about information security. Some see it as a hindrance, others as a side-effect of big government regulations, and yet others as an opportunity for job security. Likewise, everyone has their own perceived risks. What seems high-priority to a network administrator may be off the radar of the same organization's operations manager. Opinions and beliefs aside, information security is a business issue that deserves to be treated like any other serious function -- but how do you get that message across to those who make the final decisions?

Change Your Focus

When it comes to proving the business case...

NOTE: All illustrations and photos have been removed from this article.

More articles from Security Technology & Design
IP SURVEILLANCE PROTECTS UPSCALE RESIDENCES.(Feature), March 01, 2008
The Future is IPv6.(Feature), March 01, 2008
Eight Ways to Secure VOIP Voice Over Internet Protocol.(Feature), March 01, 2008
Chinese Take Out: Not Just for Dinner Anymore.(Column), March 01, 2008
Pinpointing the Weaknesses.(Feature), March 01, 2008

Looking for additional articles?
Search our database of over 3 million articles.

Looking for more in-depth information on this industry?
Search our complete database of Industry & Market reports by text, subject, publication name or publication date.

About Goliath
Whether you're looking for sales prospects, competitive information, company analysis or best practices in managing your organization, Goliath can help you meet your business needs.

Our extensive business information databases empower business professionals with both the breadth and depth of credible, authoritative information they need to support their business goals. Whether it be strategic planning, sales prospecting, company research or defining management best practices - Goliath is your leading source for accurate information.

Featured Publications