Mitigating risks related to security threats and vulnerabilities can be a tricky business. What do you prioritize? Where’s the cutoff in terms of how many tools and services you should use? What vulnerabilities might remain even after you’ve taken action?
There are also budget considerations, and for many organizations, a major shortage of available security skills to help address the growing number of threats. In fact, research from (ISC)² estimated a shortfall of more than 4 million cybersecurity experts worldwide, with 51% of respondents saying their organizations were at moderate to extreme risk because of the shortage.
To address these challenges effectively, we all need to take a more commonsense approach to security. Sometimes, honest dialogue and collaboration can help an enterprise create a cost-effective, real-world security posture. And sometimes, the commonsense answers are right in front of us, if only we take the time to look for them and act on them.
Let’s look at a few examples of how this approach works.
Assessing the Risks
A small startup company might…
