Member-only story
Improving Security Without a Security Team
Five Things To Help Your Organization Now
Professionally speaking, if I could wave a magic wand I would provide security support to every company, agency and organization, regardless of size, industry, or age. Unfortunately, too many organizations can’t find or afford a security team, let alone a Chief Information Security Officer (CISO). The task of “doing security” falls to some poor schmuck, usually in IT, who has to try to make security happen while also doing their day job, a herculean task if ever there was one. Even if there is a team, often they are under-resourced and over-worked, and managing security on their own can be overwhelming.
Something that is often overlooked by business leaders and security leaders alike, is that there are things a business can do to reduce its security risk, or improve its security capabilities, without doing anything that requires a security program, tool or service — and doesn’t involve outsourcing services to a security company. Small companies, start ups, and organizations struggling to resource security properly may wish to consider some of these things…
Data Management and Reduction Plan
You don’t need a security team to classify your data and get rid of data you no longer need. Ask yourself (or your…