[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ISN] Staff 'need reasons' to believe in security

Forwarded from: Harlan Carvey <keydet89@xxxxxxxxx>
Cc: edit@xxxxxxxxxxxx

> http://www.zdnet.com.au/news/security/soa/Staff_need_reasons_to_believe_in_security/0,2000061744,39217156,00.htm
> By Tom Espiner
> ZDNet UK
> 14 October 2005 
> Companies must ensure that their staff understand the reasons behind
> security policies and support them, rather than just dictating them
> from on high,

Here it is...the latter half of 2005, and this is being reported as
"news"?  Sorry, but security professionals have been saying this since
the early days of infosec.  It doesn't take a rocket scientist or a
brain surgeon to understand what you see when senior management
dictates any sort of policy to the assembled masses, and doesn't
bother to follow it themselves.


Harlan Carvey, CISSP
"Windows Forensics and Incident Recovery"

InfoSec News v2.0 - Coming Soon!