Chapter 7: Difficulty Securing the Modern Enterprise (with Solutions!)
The first three chapters defined the problems facing information security teams. The second three chapters described strategic solutions at a high level. The last three chapters will focus on very specific solutions to very specific problems. A common question I get from business executives is If we continue to spend more on security every year, why do we continue to see more breaches? Part of the answer to the question is what was covered in the first chapter, the economics for the attacker are not static and while the cost of cybercrime is rising, the benefit to the attacker is rising faster. Outside the pure economics of the situation though, there are several common challenges organizations face.
In this chapter, we will identify some of the most pressing challenges along with solutions I have found to be effective in my career. One of the things that makes cybersecurity so interesting is the ability to solve...
