Many administrators often come up through the ranks learning by hard knocks. Too often these admins do not fully understand their vulnerabilities or even how hackers get into their networks because they are just overwhelmed with other work and do not have time to learn about it. Afterall it is abstract. Moreover, many companies do not adequately allocate funding to protect themselves against threats. Yet companies spend on swipe card systems, locks, alarms, and safes but other than getting a firewall and virus checker for the systems companies do little else.
Can companies cost effectively protect themselves? Are the threats out there real? Are administrators and IT staff trained adequately to handle threats?
What are the threats? Bandwidth consumption, resource starvation, routing\DNS, and port slamming attacks. Also intrusions, Viruses, BOTS, and pilfering amongst others.
If you as an IT guy do not understand even one of these you may be exposing your company unnecessarily.
