What prevents breaches: process, technology or people? One answer is PC, and one is right.

Click here to visit Original posting

When I served on a panel about data breaches at the ISACA Silicon Valley chapter conference recently, the moderator asked, “To prevent data breaches, which is more important: process, technology or people?”

My fellow panelists (three CISOs and two highly experienced consultants) all answered ahead of me: “People.” I was surprised. Here I was the only awareness specialist on the panel, yet my answer was process.

Without process, I explained, the people don’t know what to do. Without process, there is no right way to implement technology. Process is implemented through governance. As I discuss in Advanced Persistent Security, without governance your security program is an accident.

To read this article in full or to leave a comment, please click here

What prevents breaches: process, technology or people? One answer is PC, and one is right.

Microsoft warns US healthcare of threat actor using new ransomware

Apache HugeGraph-Server flaw actively exploited, CISA warns

Chat with this AI chatbot to find everything you want to buy

This is the world’s most powerful Mini PC and I can’t wait to test it: Beelink’s tiny computer packs the Ryzen AI 9 HX 370 CPU and promises to deliver the GPU performance of an RTX 3050 with a whopping 50 TOPS