Information Security’s Dirty Little Secret

Here’s a short essay I wrote for the San Diego chapter of the ISSA published in the San Diego Business Journal. Information Security cannot be left only to Information Security professionals (much as some of us think it should). Decision makers and risk acceptors play a critical role. The better they understand the security risks, the better their decisions will be in the long run.