Thursday, October 16, 2014

In the Beginning...

What My Career in Information Security Has Taught Me

  • Every member of the online world is responsible for security of the whole.
  • Do no harm; never use a computer to harm others.
  • Do the basic things perfectly: You've got a ton of room to screw up the hard things.
  • Protect critical data, everything else will take care of itself.
  • Never assume you aren’t a target; crimes of opportunity occur in cyberspace too.
  • Geography has nothing to do with your attack possibilities; connectivity and bandwidth do.
  • Once you put something in cyberspace, it is there forever, even if you thought you deleted it.
  • Any new security tool will introduce new vulnerabilities; factor this into the analysis.
  • Good authentication is hard and passwords are not an effective authentication tool.
  • Live by example; never ask someone to do something you aren’t willing to do for security.

No comments:

Post a Comment