Twitter | Search | |
This is the legacy version of twitter.com. We will be shutting it down on 15 December 2020. Please switch to a supported browser or device. You can see a list of supported browsers in our Help Center.
Jeremiah Grossman
1/ If you ask InfoSec pros what their top security threats are, would you expect their top budget items to reflect that? A: They don't.
Reply Retweet Like More
Jeremiah Grossman 10 Jul 17
Replying to @jeremiahg
2/ Exhibit: "When it comes to threats, ITSec pros greatest concerns are around phishing & social engineering (50%)"
Reply Retweet Like
Jeremiah Grossman 10 Jul 17
Replying to @jeremiahg
3/ Map these threats against their top ITSec budget priorities, which happen to be the same from previous years.
Reply Retweet Like
Andrew Peterson 10 Jul 17
Replying to @jeremiahg
30-40% of successful breaches via the app (Verizon dbir 2016 -17) and only 3% of budgets on security of those apps (gartner). Def not.
Reply Retweet Like
Jeremiah Grossman 11 Jul 17
Replying to @AMPeters06
Something is very wrong w/ budget prioritization — or all the spending data we’re getting is way off.
Reply Retweet Like
Chris 10 Jul 17
Replying to @jeremiahg
No. I spend money on things I can influence. (Devil's advocate here...don't kill me)
Reply Retweet Like
Jeremiah Grossman 10 Jul 17
Replying to @Walshman23
Lol. I typically save my venom for the willfully ignorant. You seem to always be thinking about new ideas and questions them. I like that!
Reply Retweet Like
James Ringold 10 Jul 17
Replying to @jeremiahg
Would we expect budget to be the top item?
Reply Retweet Like
Jeremiah Grossman 10 Jul 17
Replying to @JRingold3
For me, I’d expect the top budget item(s) … whatever they be… to have some correlation to the top self-identified threats.
Reply Retweet Like
Mitja Kolsek 10 Jul 17
Replying to @jeremiahg
Serious question: Is the implied assumption that infosec pros are good at assessing their orgs' threats correct?
Reply Retweet Like
Jeremiah Grossman 11 Jul 17
Replying to @mkolsek
I guess it would have to be. And if they’re really not as good as we all would like to think, then that would explain a lot!
Reply Retweet Like