Corporate focus on compliance could hurt security
Companies that make regulatory compliance the sole driver of their information security efforts could be weakening their long-term security posture instead of improving it, according to IT managers at the 32nd annual US Computer Security Institute conference held last week. Therefore, it's better to make compliance a by-product of a broader corporate security strategy - not its sole end objective, they said.
By Jaikumar Vijayan at Computerworld.
[ Read more ]