Failed attempts at selling information security to business executives have been the bane of the field’s existence over the past few decades. Whether the efforts by IT and security professionals to get executives on board were focused, purposeful and effective is irrelevant.
There are some big mistakes executives make in terms of security, yet they often have their minds made up and don’t want to spend money on something — such as security — that may or may not provide tangible returns on investment. Thanks to compliance, we’re seeing a higher level of executive buy-in these days, but security is still not where it needs to be in terms of being a business focal point.
Leave a reply