The other day, the president of RSA, made the comments that he believes security has failed. He goes on to admonish defense-in-depth strategies as not keeping up with the need.
I’ve been thinking about what Amit Yoran has said and I’d like to say I disagree with his comments and belief.
People always seem to be afraid of Big Brother. They don’t like to be watched or have the feeling they are being watched. I don’t blame them. What is interesting to me is how some supervisors and managers want to rely on it when it might suit their needs.
It amazes me how many times I’ve had to turn down requests from these "leaders" attempting to use Big Brother as a management tool. I’ve heard the whole list of explanations:
One of the things I’ve learned over time is how people deal with change. Introducing an INFOSEC program needs to take this into account. It is also one of the most important lessons I learned…the hard way.
When I retired from the navy and moved to the civilian sector I admit I carried a large navy attitude. I was a Chief when I left. A navy chief is used to looking at problems and getting them solved asap.