Organizations make key information security mistakes, which leads to inefficient and ineffective control environment.
Posted on SecureReading.com | By Illyas Kooliyankal
High profile data breaches and cyber-attacks drive the industry to look for more comprehensive protection measures since many organizations feel that their capability to withstand persistent targeted attacks is minimal. But at the same time, these organizations make some key information security mistakes, that jeopardize their efforts towards control robustness.
Although many firms invest in security technologies and people, no one has the confidence that the measures taken are good enough to protect their data from compromises. Below are the 10 worst mistakes which are common to find, and important to address in the path of mature information security posture.
If you analyze the cyber security scenarios, and organizational capabilities, the prevailing trend is a vendor-driven approach. In many cases, security professionals adopt the attitude of procuring the latest security solution with fancy features as the solution to all their problems! Also, they fail to implement it effectively, with less than 50% of the functionalities configured or used.