Security professionals should get a public relations makeover to help them sell infosec to management, a security consultant says.
Speaking at the Bsides London conference, security consultant Brian Honan said that rather than become frustrated at managements lack of interest in investment in security, IT should sell security to the board.
“The management opinion is 'fix it' and yours is 'give me money'," Honan said.
Complete coverage of Infosecurity Europe 2012
“We think that management are stupid but this is not the case, they are people who built the internet and are not experts on IP law or data protection, so it is up to us to present in a concise way and make issues to present to the board.”
It was important Honan said to consider how management thought and to realise security had its "own language".
“Forget about costs: Present your business case to the management, tell them that you need to spend and it is not just a new box,” he said.
He said management disliked uncertainty so security professionals must align with business priorities, and focus on how security could help the business.
This article originally appeared at scmagazineuk.com
Copyright © SC Magazine, UK edition
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.