NZ CCIP chief talks security

Tuesday, 5 August 2003, 1:14 PM EST

Monitoring security issues and making sure all the latest patches are installed on your system could be almost a full-time job for one staff member in a moderate-sized IT department, says Jay Garden, head of the New Zealand government's Centre for Critical Infrastructure Protection (CCIP). And it still won’t confer complete protection.

Too many organisations adopt a philosophy of “security by patching”, and it isn’t enough, Garden warned, speaking at a New Zealand Computer Society session in Wellington late last month. Rather, a “secure architecture” should be created, by, for example, minimising the number of services supported on the computer system to only those necessary for the operation of the business and ensuring minimal exposure to the internet, again, only where necessary.

Many organisations that once used private networks to communicate among remote sites are entrusting some of that communication to the internet for economic reasons, and that could be an ill-advised move, or at least one to be approached with great care. Staff training in secure practices and the entrenchment of a “security culture” is vital too, he says.

[ Read more ]




Spotlight

The role of the cloud in the modern security architecture

Posted on 31 July 2014.  |  Stephen Pao, General Manager, Security Business at Barracuda Networks, offers advice to CISOs concerned about moving the secure storage of their documents into the cloud and discusses how the cloud shaping the modern security architecture.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Aug 1st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //