These wise words were written by someone who is deemed as a visionary for his time. He was a military general and strategist and many of his thoughts are compiled in the book entitled Art of War. It just so happens that much of his knowledge can be shared by the Information Security world as well conventional warfare world because the defense strategy and warplay seem to fall a long the same lines.
To ensure a company is safe it must first compile a list of assets and vulnerabilities. This is where the "know yourself" philosophy comes into play. Once you list all of your assets and vulnerabiliities it gives you a clearer picture of what you are working with and what still needs to be done. Then a plan of action needs to be implemented and evaluated to protect your assets. The same is true of creating a list for your enemy, which is where the "know your enemy" line comes into play.
I found an interesting article about how small business's don't think they need a security plan.The article states that there was a survey conducted of which "Seventy-seven percent of small- and medium-sized businesses believe that their companies are safe from cyberthreats and yet 83 percent of them have no formal cybersecurity plan. (Cooper)" I think this number is alarming. I'm not sure what makes SMB's think they can get away without having security. Perhaps it's that they falsely think that attackers are only interested in attacking big corporations. Either way it's high time that security is made a priority instead of an option in all business's. A business is someone's livelihood. When it falls, so does the individual. No one company is immune to cyber warfare.
References:
Cooper, C. (n.d.). Retrieved from http://news.cnet.com/8301-1009_3-57533453-83/small-biz-survey-no-cybersecurity-plans-no-worries-what/
Whitman, M. E., & Mattord, H. J. (2011). Management of information security. (3rd ed.). Course Technology Ptr.
No comments:
Post a Comment