Why Due Diligence as a Defense is Not Enough
by Carter Schoenberg - CISSP - Second Chairs
- Monday, 28 March 2005.
Very few law firms specialize in this area, and only a handful or attorneys are skilled enough as litigators in information security. Because of this the legal community is rapidly embracing information security and understands a market exists for such practices. In fact, the American Bar Association has printed materials for standards on this subject matter. Rather than conduct business as usual and rely on the odds - which are not in your favor. It would be wise to understand that the cost of defining why you shouldn’t or cannot afford to apply prudent security strategies often equals or surpasses why you should. Hackers are no longer interested in the spectacle of breaching a system and winning praise from peers. The hackers of today are more organized, better funded, work in groups without national boundaries, including organized crime, and are setting their sites on you.
Still think you’re ready to go to court?