« The ISM-Community is Now Live
Defining Security 2.0 - Part 3 »

Defining Security 2.0 - Part 2

My first post tackled

Connecting People with Technology

Aligning IT with Business

Connecting Technology to Technology (and why Symantec are dead wrong on this one)

Today I add a new component into the mix of what I think Security 2.0 will look like;

Business Activity Monitoring

Richard Betjlich has done a great job educating people that its not about products like IDS but it’s about a process he calls NSM or Network Security Monitoring.

I think security 2.0 will lean heavily on BAM or Business Activity Monitoring. BAM watches to ensure the right people are doing the right thing at the right time. Aligning people to do the right thing is critical )and very hard) in todays distributed business. The best IDS, the best log file monitoring tools or the best vulnerability scanners only produce data. Even if that data was produced with a high degree of confidence (ie a high risk vulnerability found by a scanner really needed attention) it is all pointless unless a human acts. BAM will help ensure people act appropriately to information.

PS For the record the ISM-Community is not about Security 2.0 as Alex Hutton suggested here. It is about this.

Explore posts in the same categories: Security 2.0, Security Blogs, Security Industry

This entry was posted on March 1, 2007 at 1:20 pm and is filed under Security 2.0, Security Blogs, Security Industry. You can subscribe via RSS 2.0 feed to this post's comments. You can comment below, or link to this permanent URL from your own site.

One Comment on “Defining Security 2.0 - Part 2”

  1. Enemy 1 & 2: Passwords and Patches « Jason Bevis Says:
    May 3, 2007 at 5:00 pm

    [...] doesn’t work, Security 2.0, Passwords, Patches at 11:57 am by jtbevis I could not help reading the Security 2.0 posts by Mark Curphey and I especially liked the Business Activity Monitoring discussion.  [...]

Comment: