Home Forums SQLServerCentral.com Editorials We Don't Care about Data and IT Security RE: We Don't Care about Data and IT Security

  • August 11, 2014 at 6:55 am

    #1736831

    chrisn-585491 (8/11/2014)

    It doesn't help if a DBA or developer cares about security, if their boss and the rest of the org table doesn't. It's time for the C-levels to actually earn their pay and make security a priority.

    Target? Their previous CIO was a marketing wiz, not a IT professional. If they had put the effort into security that they did into marketing analytics, they wouldn't have had the issues that vexed them last year.

    Here's what's killer to us in Info Sec. Target *did* invest. Target had the latest and greatest from FireEye. AND IT WORKED. The system alerted the technical staff about the deployment of the malware. Somebody in the chain chose to ignore those alerts.

    K. Brian Kelley
    @kbriankelley