In a December 2003 column published by ZDNet, Dan Faber predicted the following:
“Enterprises next year [2004] will make increased investments in security, but as in past years, it won’t be enough. The required investments are not just in technology products such as personal firewalls and deep packet inspectors, but also in education and training. Most enterprises don’t create a culture of security in which every employee knows that they need to be part of the solution and adhere to basic guidelines to reduce vulnerabilities from internal and external sources of attack.”
What are best practices IT departments should use to create a “security” culture within their organizations? Will users ever take the responsibility of computer security seriously?
Farber’s column:
href=”http://techupdate.zdnet.com/techupdate/stories/main/farber_2004_predictions.html