Chris Christiansen, IDC for Kaspersky

Chris Christiansen, IDC for Kaspersky


A lot of times, when we talk to CISOs or CSOs,
chief security officers, or chief
information security officers,
we ask them what they’re
concerned about
and it’s interesting. We
kind of expect, you know, technology
in reality
it’s hardly ever technology. It’s
generally sort of a compromise between
three elements,
risk – and risk can range from
security risks to compliance risks
to financial risk in some cases even to
physical risks –
and then costs – and costs come in a
variety of different forms as well, I mean
, they can be purchase price, they can
be
maintenance support, they can be
system integration, they can be
professional services,
they can be internal costs as well of
operation administration. And then we
have
the most interesting one, we have
user experience
and I used to call this inconvenience
for user,
inconvenience, but user experience sounds
better and it’s
you know has a great acronym UX. Anyway,
what this comes into play is typically
the Business Unit Head will go
you know that security stuff that you’re
suggesting, that’s going to drive my
customers away.
It’s gonna make them drop their shopping
carts and its gonna make them call
our help lines instead of doing it online, it’s going to
you know, make them switch to some other
competitor for the transactions.
You have to make it simpler. You have to make the user experience
better. So, that compromise between
risk, cost and user experience becomes
a crucial element in deciding how
security is defined.
Being able to look at that and
also define it and get some agreement
around
common terms and common understanding,
across all those different groups –
a senior management, IT security, IT
management, help
desk people, the legal, the HR
and probably most importantly the
business unit people.
So that is a crucial
element in understanding and getting
agreement
and looking at how the CISOs
see the world.

Leave a Reply

Your email address will not be published. Required fields are marked *