When I read this article, I realized even SMBs have to follow this basic guideline; and yes - I can't do consulting with even a small company, without help from the same principles guiding me, just like what is postulated in this article. To me it breaks down similarly:
G= Who will be the decision maker, and what teams have the necessary knowledge?
R= What really needs protecting, and how cost effective is it to lock down, and to what degree?
C= Compliance - What protocols, HIPAA restrictions, NFA rules, gateway infrastructure, etc. with be the next reality?
Thanks Dominic!
