Re: Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)
From: Bennett Todd (bet_at_rahul.net)
Date: 06/02/05
- Previous message: Marcus J. Ranum: "Re: [fw-wiz] Ok, so now we have a firewall, we're safe, right?"
- In reply to: Marcus J. Ranum: "Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)"
- Next in thread: Scott Stursa: "Re: Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Thu, 2 Jun 2005 20:02:30 +0000
In the financial services biz, there's a nice way to get out of this
bind: engage the risk analysis team. They hold the reins, nobody is
allowed to ignore them, and their job is analyzing risk tradeoffs.
Get them involved, teach them enough so they can make informed
judgements about computer security risk/cost tradeoffs, and things
get better. Not instantly, of course, but the the direction of
change switches:-).
In other business segments, I think the root problem --- not just
for computer security, but for any number of other corporate ills
--- is a failure to realistically account for risk in management
accounting.
The banking and investment folks have a leg up here since their
product is buying and selling risk.
-Bennett
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- application/pgp-signature attachment: stored
- Previous message: Marcus J. Ranum: "Re: [fw-wiz] Ok, so now we have a firewall, we're safe, right?"
- In reply to: Marcus J. Ranum: "Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)"
- Next in thread: Scott Stursa: "Re: Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
