Welcome to the continuation of the Into the Breach: Protect Your Business by Managing People, Information and Risk audio series. (Click this link) to learn more about this how this book solves today’s challenges and pick up a complete copy.
This series, underwritten by Configuresoft, now part of EMC, is the full and unabridged audio version of Into the Breach, written by Michael Santarcangelo and read by the author.
In this episode (Chapter 10)
Compliance is not a commodity that can be purchased. And demonstrating compliance at a point in time does not mean information is being protected properly. There is a growing chorus of practitioners that suggest compliance is not security; however, proper security can and often does lead to effective compliance.
The key in managing risk and demonstrating compliance is to engage people in the process of assessing and protecting information â€“ with and without the use of technology and controls.
In this chapter, I share some personal experiences and research that demonstrate the difference between a reactionary approach to compliance and a more mature process that addresses many needs at once.
If you find yourself drowning in compliance â€“ or are trying to convince others of a different approach â€“ this chapter is written for you.
Put the power of Into the Breach to work for youâ€¦
After listening to this segment of Into the Breach, keep the energy going and support the shift in thinking and inspire behavior change by
- Engage with Michael on twitter (http://twitter.com/catalyst)
- Subscribe to The Security Catalyst podcast & blog to get more insights; ask a question and get an answer!