Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tempering Security’s Knee Jerk Reaction to Warn of Impending Doom

“When an organization wants to embrace a new technology or a way of doing things, the first thing a security person says is ‘Whoa, let’s step back. Let’s be careful. Let’s think about this. There’s going to be security problems,’” said David Mortman (@mortman), chief security architect for Dell Software, in our conversation at Security BSides Las Vegas

The problem that both Mortman and I realized is that security will often warn of doom on anything. Instead of being the roadblock, be the seat belt or the crash helmet, suggested Mortman who understands with the rate of technology change, companies have to take more and more risk in order to stay competitive. 

Using the analogy of a chair with two, three, and four legs, Mortman and I chatted about how security people can reframe their response that better helps the business understand the risks they’re getting into.

“Get out of the way of the business. Let the business do what it needs to do but be there with the first aid kit,” said Mortman. “Be there as both the personal trainer and the medic.”

Subscribe to the Tenable Blog

Subscribe
Try for Free Buy Now

Try Tenable.io Vulnerability Management

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets
Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save