We recently ran across an excellent article by Dr. Peter Cochrane on Business Cloud News that addresses security risks at businesses.

His case study is eye opening for anyone charged with protecting valuable company information.

From his experience, he assembled 15 laws of security.

15 Laws of Business Security

1. Resources are deployed inversely proportional to actual risk
2. Perceived risk never equals actual risk
3. Security people are never their own customer
4. Cracking systems is 100-times more fun than defending them
5. Security standards are an oxymoron
6. There is always a threat
7. The biggest threat is always in a direction you’re not looking
8. You need two security groups — one to defend and one to attack
9. People expect 100% electronic security
10. Nothing is 100% secure
11. Security and operational requirements are mutually exclusive
12. Hackers are smarter than you — they are younger!
13. Legislation is (and will always be) many years behind
14. As life becomes faster and chaotic, it becomes less secure. But the good news is half-lives are getting shorter too!
15. People are always the biggest risk factor. Machines are perverse, but they ain’t devious, not yet anyway!

For the full article, click here.

Dr Peter Cochrane is the former Chief Technologist for BT and a seasoned IT professional with over 40 years of hands-on management, technology and operational experience across a number of industries.