A Shortsighted Model for Cybersecurity


045148920c362d86b58519e3d48aacde86dc78d26e64ec4272d5a155b54c047a.jpg

I have an issue with this! No disrespect to the original poster creator, who is the sheer levels of complexity and advocating the need for multiple tools to work together, but cybersecurity will continue to disappoint, be ever more expensive, and overcomplicated if we fail to define the problem correctly or develop comprehensive strategies to manage evolving cyber risks.

 

Take a look at this diagram. It is like many that float about, which provide a great technical view of cybersecurity (with hint of process thrown in), but fully ignoring the behavioral/cognitive aspects. That makes this very shortsighted. Even if you had perfect technology controls for everything listed, an admin making a mistake or purposeful attack, would bypass all these controls.

 

We need to recognize that cybersecurity is more than just a tech problem in need of a tech solution(s). In fact, technology is the battlefield, but there are attackers, victims, and processes that connect everything.

 

Yes, multiple systems are needed - but that also includes the people and processes that intertwine with the technology. Let's have a better view. Let us develop strategies that are effective, efficient, and target all aspects of the challenge we face.

How do you rate this article?

15


Matthew Rosenquist
Matthew Rosenquist

Cybersecurity Strategist specializing in the evolution of threats, opportunities, and risks in pursuit of optimal security for our digital world.


Cybersecurity Tomorrow
Cybersecurity Tomorrow

Cybersecurity strategy perspectives for the emerging risks and opportunities of securing our digital world. The insights of today will lead to tomorrow's security, privacy, and safety foundations.

Publish0x

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.