What is, in your opinion, the biggest challenge in protecting information at the enterprise level?
The biggest challenge statistically is protecting your internal resources from internal users. People seem to always forget about protecting their systems from internal users. The easiest way to attack a companies electronic resources is to apply for a job within the company and attack them from the inside. More often than not, there is little if NO protection from internal users. It is important to create security zones and only give users access to the information they require.
What are your future plans? Any exciting new projects?
I have just finished the CCIE Practical Studies: Security book for Cisco Press. It is a hands-on based book for the Security CCIE lab exam. I am just starting work on the second edition of "Cisco Secure Virtual Private Networks". This new book is more focussed on the Cisco VPN 3000 range of products and covers them in far greater details than the old book did. I am also studying hard for the Security CCIE.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.