It is common for ineffective security to be a symptom of a cultural issue. Both IT security and IT operations teams are held responsible for managing, supporting and securing increasingly complex network environments, often clamoring for more resources to get the job done. As the pile of work increases, each department hunkers down and focuses primarily on their specific roles and responsibilities. The silos expand across other key stakeholders, as well, when you consider business applications - complex connectivity requirements also involve multiple parties, such as application owners and firewall administrators. Organizations should consider a cultural change that involves breaking down the invisible walls that typically prevent these different stakeholders from effectively communicating with each other – to improve security without impeding productivity.
With the continued rise of data breaches and cyber attacks, AlgoSec, a leading provider of network security policy management, offers a top five list of information security resolutions organizations should strive to attain this year.
The common theme across these resolutions is to step back from what is being done today, examine the organization’s technologies, processes and culture and ultimately take a proactive approach to addressing security.