|
|
By Rob Preston Courtesy of Network Computing
Secure Enterprise will talk to information security specialists on their own terms, in their own language, leveraging the labs, expertise and contacts of three CMP Media organizations.
Remember the Laffer Curve of supply-side economics theory? The challenge for supply siders was to pinpoint the apex of this bell-shaped curve, indicating which tax rate would yield the maximum tax revenue. The theory is that lowering taxes could actually boost revenue by encouraging more people to work and driving more people onto the tax rolls. Problem is, no one really knows what the optimal tax rate is--setting taxes too high discourages work and lowers overall tax revenue; setting taxes too low also fails to generate enough revenue. Policy-makers can only guess at the optimal tax rate to meet their fiscal goals.
Companies and their IT organizations are muddling through their own Laffer analysis of sorts when it comes to information security. Security isn't inherently valuable. The challenge is to apply just enough to promote trusted business but not so much to impede commerce.
That's the premise of Secure Enterprise. Great information security isn't about erecting the biggest walls. It's about creating an environment where you and your customers, suppliers, partners and co-workers can feel safe, but not stifled, in your daily transactions and information exchanges.
That's fine in theory, but we're all aware that security isn't easy to map out, implement or manage. For one thing, it requires a delicate balance of policy, process and technology, areas Secure Enterprise will explore in depth through first-person accounts, expert analyses, case studies and product reviews. We'll cover the life cycle of information security, from risk assessment, technology evaluation and development through deployment, integration, training and management.
At the same time, we agree with our consulting partner Neohapsis (authors of this issue's cover package on security information management) that security must become less perimeter-centric and more asset-centric, because no organization can afford to protect everything. Companies must figure out what exactly they're protecting--which information is most valuable and where it resides--and then provide needed access to it while keeping the miscreants away.
Secure Enterprise, launched as a partnership of Network Computing, Network Magazine and the Computer Security Institute, will talk to information security specialists on their own terms, in their own language, leveraging the labs, expertise and contacts of all three CMP Media organizations. Let us know what you think of this premier issue, and what we can do in future issues to help you make the right security policy, process and technology decisions for your organization.
SP
|
|
|
 |
|
No Comments Allowed for Anonymous, please register |
|
| |
|
Login |
|
 |
|
|
|
|
· New User? · Click here to create a registered account.
|
|
|
Article Rating |
|
|
|
|
|
|
Average Score: 5
Votes: 1
|
|
|
