Fortress Data Protection

I have a front seat in the drama that is playing out in the world today. I protect client interests, but I also strive to meet client needs as they communicate them to me.

One of the most frustrating things to watch is the implementation of security measures as I advise clients. I don’t claim to know everything, but my 25 years of experience with computers and my focus on client needs has revealed a diversity of security problems and some unique ways to provide solutions.

Some clients want to implement complex systems and insist on strong security. Other clients want easy end-user experience as a higher priority than security, and are willing to sacrifice security for efficiency for their employees.

I always try to explain the advantages and disadvantages of each decision, but it’s often hard to convey all the “pros and cons” to a busy business owner or CEO.

Still, I insist on full disclosure, and sometimes find myself warning against changing passwords for all users to a single easy to remember code. Sure, there is a trade-off between security and usability, but there is also a suicidal strategy for an organization. What’s at risk? The business data, identities of all employees, and financial disaster for all involved!

Security is necessarily a partnership between all those involved with activities and decisions relating to a business. If the executive leaders of the business are not willing to acknowledge risks and help enforce fundamental security measures, there is little that can be done to secure a business long-term.

It’s a partnership. Each partner must listen and heed the advice of the specialists seeking to provide help to an organization. Decision makers need to listen to and consider the advice of security professionals and weigh that against the needs and demands of workers “in the trenche”. The long-term health of a business is at risk in this dance.

Filed under: Blog by Dr. David Johnson