The recent wave of information security breaches has gotten attention from the corner office. CEOs and corporate boards are now willing to invest more time and attention in cybersecurity but they are also demanding better visibility, monitoring, and oversight of IT risk so they can make informed and timely investment decisions. Unfortunately, CISOs are hamstrung by legacy security tools which collectively generate huge volumes of data but can’t consolidate and report on this data in a way that is meaningful to the business stakeholders. What’s needed? A next-generation security management architecture built for scale, integration, automation, and business/IT analytics.
FireEye, Palo Alto Networks, and new cybersecurity requirements were buzzing at RSA 2013.
The information security industry is improving but many don’t understand the principles of security or their customers.
The information security industry is trending in the right direction but more work lies ahead.
Visible cybersecurity issues provide an opportunity for vendors to demonstrate knowledge, comprehensive solutions, and leadership at RSA Security Conference 2013.
5 things I hope to hear about at the RSA Conference – but I’m not sure I will.
Well intended cybersecurity regulations created inadvertent detours, operational overhead, and vulnerabilities.
What happens next? When? Will we see further action on cybersecurity, or inaction, and by whom?
The upcoming State of the Union Speech is a perfect opportunity for President Obama to announce a pragmatic cybersecurity plan.
Annual hype-fest later this month will demonstrate which vendors “get it” and which are posers
There is no advanced persistent threat (APT) magic bullet solution but the New York Times breach should signal the need for information and endpoint security changes.
CIOs, CISOs need a mutually beneficial plan for big data security analytics – ASAP
Hacktivism and commonplace security attacks are on the increase. What does this mean?
New strategy is a good start but plenty of holes to fill and work to do in the future.
Jon Oltsik is an ESG senior principal analyst and the founder of the firm’s information security service. With over 25 years of technology industry experience, Jon is widely recognized as an expert in all aspects of information security and is often called upon to help customers understand a CISO's perspective and strategies. Recently, Jon has been an active participant with cybersecurity issues, legislation, and technology within the U.S. federal government.
© 2015 by The Enterprise Strategy Group, 20 Asylum Street, Milford, MA 01757 508.482.0188