Tuesday, January 29, 2008

Fraud, Privilege, and the Insider Threat

I just tuned in to a webcast sponsored by NetIQ. The topic of the talk was Fraud, Privilege, and the Insider Threat. One of the speakers, Dr. Eric Cole, made a few points that I felt were very true and often overlooked:

  • Insider threat is not about protecting the servers in the data center, but about protecting the data on those servers.
  • If you are on the defense, you have to find all vulnerabilities. if you are on the offense, all you need is one.

After the first bit of the presentation was over, and it switched to the NetIQ speaker, I tuned out because I had other obligations.

No comments:

Post a Comment

Please share your view and opinions on what I wrote. In order to maintain quality, all comments will be moderated for merit. Contributions that call me out on statements that appear unfounded, wrong, or simply with which you disagree are highly appreciated and are even encouraged. Spam and 'me too' answers will be ignored.