Our top 5 findings from IT security audits
What are the top things we have learned from performing 200+ security audits? 1. The “major issues” do not change Good security is good security, and you can think of the major security issues as being giant “targets” within your organization. Targets which the bad guys hope will come into their line of fire, and they are regularly shooting at. You can easily spot and name these targets: User awareness, access control, backups/recoverability, etc. These are the primary topics that most compliance requirements are based on. Identifying these large targets and putting in the appropriate safeguards to make these targets [...]