I am attending a Cyber Security meeting with Homeland Security this Saturday. I continue to be active with their Cyber Security Unit. As attacks on corporate networks continue to escalate, we are seeing more and more instances of very sophisticated intrusions. The recent discovery of the breach of the U.S. Chamber of Commerce illustrates that these types of attacks will continue to progress in both their frequency and sophistication.
It is being reported that the U.S. Chamber might not have been the ultimate target but instead was potentially being used as a gateway to the networks of its members. What are you doing to protect your networks? What are your trusted business partners doing? Do you have a plan?
Corporate America has not always taken security serious. From healthcare to manufacturing - we have a security team on paper, but what about actions? They do provisioning, but what about monitoring, safeguards, and lock downs. Most corporations can't afford a large team of experts - but then hire it out as a service. Stop saying we have security and get security. It is ok to say no to employees, it is ok to take the best interest of the corporation into consideration. Do employees really need to get to web base email? Unsecure networks?
Cyber Attacks from foreign sources will increase. Not only do we need to be ready, but a plan that is tested, detailed and ready to respond to an attack. The infrastructure of our country is dependent on all users of the internet to take this serious. Corporate America - time to step up to the plate and take this serious, not next year, not tomorrow - TODAY.
Security is everyone's responsibility.
Keep it positive!
Scott Arnett
scott.arnett@charter.net
About Me
- Scott Arnett
- Scott Arnett is an Information Technology & Security Professional Executive with over 30 years experience in IT. Scott has worked in various industries such as health care, insurance, manufacturing, broadcast, printing, and consulting and in enterprises ranging in size from $50M to $20B in revenue. Scott’s experience encompasses the following areas of specialization: Leadership, Strategy, Architecture, Business Partnership & Acumen, Process Management, Infrastructure and Security. With his broad understanding of technology and his ability to communicate successfully with both Executives and Technical Specialists, Scott has been consistently recognized as someone who not only can "Connect the Dots", but who can also create a workable solution. Scott is equally comfortable playing technical, project management/leadership and organizational leadership roles through experience gained throughout his career. Scott has previously acted in the role of CIO, CTO, and VP of IT, successfully built 9 data centers across the country, and is expert in understanding ITIL, PCI Compliance, SOX, HIPAA, FERPA, FRCP and COBIT.
No comments:
Post a Comment