BSides: Infosec pros need a PR makeover

Powered by SC Magazine
 

Work with the business, not against it.

Security professionals should get a public relations makeover to help them sell infosec to management, a security consultant says.

Speaking at the Bsides London conference, security consultant Brian Honan said that rather than become frustrated at managements lack of interest in investment in security, IT should sell security to the board.

“The management opinion is 'fix it' and yours is 'give me money'," Honan said.

Complete coverage of Infosecurity Europe 2012 

“We think that management are stupid but this is not the case, they are people who built the internet and are not experts on IP law or data protection, so it is up to us to present in a concise way and make issues to present to the board.”

It was important Honan said to consider how management thought and to realise security had its "own language".

“Forget about costs: Present your business case to the management, tell them that you need to spend and it is not just a new box,” he said.

He said management disliked uncertainty so security professionals must align with business priorities, and focus on how security could help the business.

This article originally appeared at scmagazineuk.com

Copyright © SC Magazine, UK edition


BSides: Infosec pros need a PR makeover
 
 
 
Top Stories
ANZ looks to life beyond the transaction
If digital disruptors think an online payments startup could rock the big four, they’ve missed the point of why people use banks, says Patrick Maes.
 
What InfoSec can learn from the insurance industry
[Blog post] Another way data breach laws could help manage risk.
 
A ten-point plan for disrupting security
[Blog post] How can you defend the perimeter when it’s in the cloud?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  29%
 
Application integration concerns
  3%
 
Security and compliance concerns
  27%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  21%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 1043

Vote