Information security must be built on three key domains:
The integration of these domains represents maturity, not only in the enterprise approach to information security, but in the way the enterprise itself is managed. The more mature organization will be able to take advantage of extending solutions in each domain across its comprehensive information security challenges — but only if its approach to each domain exhibits the discipline necessary to make such integration possible.
What is happening today, however, is that the events of recent months have brought the two domains even closer, with technologies emerging in IT — in concert with people, process, and enterprise management as a whole — that offer new solutions for enhancing the security of information itself.
Scott Crawford is a senior analyst with Enterprise Management Associates in Boulder, Colo., an industry analyst firm focused on all aspects of enterprise management systems and services. Scott is the former information security chief for the International Data Centre of the Comprehensive Nuclear-Test-Ban Treaty Organization in Vienna, Austria, and has also been a systems professional with the University Corporation for Atmospheric Research as well as Emerson, HP, and other organizations in both public and private sectors. He can be reached at scrawford@enterprisemanagement.com.
|
Digg
DZone
Reddit
Slashdot
StumbleUpon
del.icio.us
Facebook
FriendFeed
Furl
One of the ways around the issues of security and control that make some businesses wary of cloud computing is to build a private cloud -- one that remains within the corporate firewall and is wholly controlled internally. Private clouds also increase the agility of IT an organization's IT infrastructure and make it easier to roll out new technology projects. Download this eBook to get the facts behind the private cloud and learn how your organization can get started.
