Three Imperatives – according to the author. And they’re a lot to swallow!
“Deliver secure, new business services. Your business depends on your ability to deploy new apps and services quickly (and, of course, securely). We all know how fast the market moves these days, and unless you can move at least that fast in terms of offering new or upgraded services, your competitiveness will erode. And, of course, this now includes the ability to quickly offer apps to your mobile users in a way that does not require an entirely separate security model across Web and mobile apps.
Secure access across the extended enterprise (including mobile and cloud). Most organizations have lots of employees and partners that need to get access to apps and data spread around the distributed IT environment. But these users have become more geographically distributed, and almost always want to use their own devices for this access. More apps, more data, more users, and more devices – all of this creates complexity and makes it hard for them to collaborate effectively. Throw in the cloud, and managing and enforcing access policy across all of your users becomes a significant challenge.
Protect against insider threat and external attacks. The first two challenges above related to enabling your business. But enabling it won’t do you much good unless you also protect it. Two of the biggest risks these days are insider threat and external attacks. Insider threat is problematic because many admins have more rights than they absolutely need, so even careless acts can have serious impacts. External attacks are an increasing problem due to the sophistication and financial motivation of the attackers.”
I think we had better get at it!
Thanks to Sumner Blount and – Security Management – CA Technologies