I recently spoke to MSPmentor (full article is here) along with other members of the CompTIA IT Security Community on major events in internet security in 2015. Our retrospective outlined how organizations are using new technologies, and what this means for the service providers who are trying to keep their customers secure.
Although we all approached this from different perspectives, it boiled down into a single notion—that when it comes to security, you shouldn’t take anything for granted. And yet, most businesses do. Here are the three contributory factors:
- Lack of preparation— Internet security often becomes a concern only after an organization suffers a cyber attack. The bottom line is that we do not take things seriously and are always looking for ways to skirt without having to spend extra money on prevention.
- Easy access to data— New technologies simplify data access, but also can increase the risk of internet security threats. The ease in which we can plug things in and access them from anywhere on the Internet adds exponentially to a threat whose scope is almost impossible to predict or measure.
- Securing the Internet of Things — The Internet of Things (aka “IoT”–the universe of devices connecting to each other without human intervention) provides a wealth of new collaboration opportunities, but creates concurrent risks for organizations too. Multiplying the number of devices connected to the Internet multiplies the potential sources of infections and weak points in a network. As the perimeter expands, a mandate for a layered approach to security arises, including (but not limited to, protection for bring-your-own-device (BYOD) and IoT endpoints.
We’ll be revisiting this topic in 2016. What is your company or organization’s mindset on the three factors above? What network security issues will be keeping you up at night during 2016?