Security is an imperfect art. It’s also an imperfect science. Whether it involves experimenting with certain tweaks or implementing proven standards and prescriptive advice, figuring out how to manage a security program is as complex as navigating any other business function.
According to the Pareto Principle, security professionals should focus on the 20 percent of security issues that cause 80 percent of their problems. There’s quite a bit that makes up the 20 percent, but the bulk of security issues simply come down to software patching.
Leave a reply