I spoke at the NetDiligence® Cyber Risk & Privacy Liability Forum this morning, on a panel dedicated to advanced security topics.  Now, while these topics were not the same kind of advanced security stuff you would see at Blackhat, they are advanced for the audience.  In fact, we even had a question about Bluetooth security that suggested this audience was relatively unfamiliar with the risks associated with this new fangled stuff.

Raise Your Hands, by Thijs van der Vossen

But that’s not the point, the point is that someone asked the question!

How many of us have seen companies end up in a bad situation from a security and technology perspective because someone didn’t ask questions until they understood enough about a solution to understand the risks associated with deploying said solution?  Yes, we have experts that know all the nitty gritty details, but managers and executives need to be comfortable asking questions about data security as they build businesses around the technologies.

Maybe it is our hyper-competitive nature to always appear to be in the know? You may save face today, but what about tomorrow?  How dumb will you look after a breach?

Today we covered items like vendor management, virtualization, cloud computing, SQL Injection (quite an advanced topic for a group largely consisting of underwriters and lawyers!), rogue employees, and mobile computing.  And we did it in an hour!  It was rapid fire security, coming at ya!

Of all the crazy questions that I’ve been asked in front of a crowd at one point or another, the bluetooth question ranks high in my book of favorites—and not just because it was easy to answer.  Don’t be afraid to ask questions.  Choose the right forum, but get the information you need to make truly informed decisions on which your employees, executives, customers, and shareholders depend.

This post originally appeared on BrandenWilliams.com.

Possibly Related Posts: