Toolkit
Story: Should IT security be separate from IT?
Posted by: Manikandan Natarajan (Wednesday 17 May 2006, 1:22 PM)
IT security is a very broad term to debate upon! The very term triggers a shiver! Security can be at different levels: viz., perimeter, physical and aplication level.
Each of the above should be looked in as a seperate area of security study!
The question is: Who wants to take the responsibility for a possible break-down? Break down could be in terms LAN, WAN, networks, IP level or could be on the application level in terms of Phishing attacks, Dos or DDoS and many more Internet based attacks.
IT Security is a broad term to be used for a possible decision to be made. It would be intresting to debate on the same and a possible speculation cannot be ruled out!
The way I see it as a IT security analyst, in terms of aplication level security, seperating IT from IT Security has its own Pros and Cons.
Pros could be an efficient team out there to deal with and come out with possible solutions in terms of the right cryptographic and Encryption being used and a lot more on those grounds for the same in co-ordination with the Peers of the company. Cons because of the word co-ordination I used earlier.
There are more than one areas of IT that needs to works in coordination with IT Security. There still would be a part of work that the IT and the IT Security guys would need to do together under one roof, across the table.
Likewise, there could be a seperate entity concentrating on specific areas of security viz., application.
Full Talkback thread
Story: Should IT security be separate from IT?
-
Liability and purchases are two things underestima... Arthur B. -
IT security is a very broad term to debate up... Manikandan Natarajan -
It is interesting that you approach security in th... Anonymous
-
An independent set of eyes for the business should... Arthur B.
-
Once you break down security into manageable items... Arthur B.
