[ISN] Staff 'need reasons' to believe in security
InfoSec News
isn at c4i.org
Mon Oct 17 00:03:30 EDT 2005
Forwarded from: Harlan Carvey <keydet89 at yahoo.com>
Cc: edit at zdnet.com.au
> http://www.zdnet.com.au/news/security/soa/Staff_need_reasons_to_believe_in_security/0,2000061744,39217156,00.htm
>
> By Tom Espiner
> ZDNet UK
> 14 October 2005
>
> Companies must ensure that their staff understand the reasons behind
> security policies and support them, rather than just dictating them
> from on high,
Here it is...the latter half of 2005, and this is being reported as
"news"? Sorry, but security professionals have been saying this since
the early days of infosec. It doesn't take a rocket scientist or a
brain surgeon to understand what you see when senior management
dictates any sort of policy to the assembled masses, and doesn't
bother to follow it themselves.
Wow.
HC
------------------------------------------
Harlan Carvey, CISSP
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com
http://windowsir.blogspot.com
------------------------------------------
More information about the ISN
mailing list