Risks to corporate networks: the critical issues

Today I enjoyed the opportunity to be one of the instructors in a ASIS CPP certification program. My topic was information security in the face of today’s risks.

The big change in computer network defense is today’s axiom, “The attackers are already inside my networks”. Firewalls are important but not valuable without more advanced defense tools and skills. Critical issues are:

  1. Locating assets
  2. Defining what’s normal, setting off an alarm when threats are detected
  3. Preparing an incident response capability to promptly lower risks and respond to threats

Please accept this invitation to my local ASIS chapter