Suggestion #8 from Symantec
Peter ??? great post; I enjoyed reading it and appreciate your insight. We at Symantec completely agree with your recommendation of implementing security software and ensuring that software is updated. Organizations cannot expect to maintain their security posture with old or outdated security products, particularly in this era of constantly-evolving cybercrime. Security vendors do not release new versions of technology just to generate revenue; they do so in order to provide companies with the tools needed to effectively arm themselves against cybercriminals ??? this effectiveness is significantly hindered when old technologies are used. Staying ahead of the curve in terms of technology updates is not just smart, it???s a crucial defense strategy in the current threat landscape.
In addition to your list of recommendations, we would also like to highlight the importance of creating a security-aware culture within an organization. We recently conducted a poll with CSO Magazine and found that 71% of CISOs agree that people/employees are their ???weakest links??? in defending against targeted attacks -- which is why it is critical that organizations adopt a defense-in-depth strategy in addition to building a security-aware culture across all levels and departments. This approach is the only way to ensure organizations are truly mitigating the risk of a cyberattack ??? be it in the office or on the road.
--- Jason Nadeau, CISSP
Sr. Director, Endpoint Security & Suites Product Management
Endpoint & Mobility Group, Symantec Corporation
