Here's an article for people trying to justify security to their management. It talks about getting involved with the SANS organization, making the case for security, virus detection, PKI and E-Commerce, and more. "The first rule of IT . . .
Here's an article for people trying to justify security to their management. It talks about getting involved with the SANS organization, making the case for security, virus detection, PKI and E-Commerce, and more. "The first rule of IT security as perceived by experts today emerges from this axiom: because threats are ever-changing, you will always be working on security. ... The second rule, we believe, is that Electronic Commerce both exacerbates the problems related to IT security while presenting government and industry with their best opportunity yet to conquer many threats. EC puts billions of transactional dollars at risk, raising the stakes for the IT community. In fact, the world’s total investment in EC might be seen as the trust account from which security will substantially draw. Our third and final rule allows that complexity and contradiction will continue to exist but can be reconciled by forces both within the government—where better policies and technical guidance will eventually be carved out—and in industry, which will function best as government’s partner. Thus, our third rule is simply this: in the end, you will solve your security problem."

The link for this article located at Government Computer News is no longer available.