Interviewbuch 2012 englisch Seite 37

Hinweis: Dies ist eine maschinenlesbare No-Flash Ansicht.
Klicken Sie hier um zur Online-Version zu gelangen.

Inhalt

38    Recurity Labs FU Berlin  Felix Lindner  Sandro Gaycken automotiveIT 2012 discovered The number of internal threats is also considerable but it varies from one industry to the next But there are no solid figures supporting the report that emplo yees within a company are responsible for about 70 percent of all security incidents Experts assume that target hacker attackers cause billions in damage every year Do you believe that the majority of CIOs and IT managers are technically ca pable of taking sensible and appropriate protective measures Gaycken Companies now have basic protec tion well in hand And the regulation side increasingly exercises a positive pressure just think about the requests for appro priate security certificates or about fines imposed for negligence and violations But protection against targeted attacks is another story entirely Today there is an unbelievable amount of work to do in this area There is hardly enough expertise at the moment For a long time security was a product that many CIOs purchased mo stly from large well known providers so that the decision seemed responsible to management But such strategies increas ingly come to naught It is crucial for com panies to build up their own security ex pertise in the form of an appropriate task force for example These experts should know the infrastructure of the company and its facilities in detail so they can cor rectly determine the extent of the securi ty requirements adapt security solutions precisely and correctly evaluate and assess alarm messages Lindner There are companies in every in dustry already working with these struc tures And I know a successful auto indus try example showing how each member of a management board was actively integra ted into security activities long term With this close integration security becomes a business enabler and not a patch that is screwed on somewhere somehow and gets in everyone s way There are many well trained young workers in IT depart ments and specialist fields who tackle the security issue with great enthusiasm Com panies should not let this potential lie dor mant They should actively put it to use It takes time but an investment in a chief in formation security officer and appropriate internal organization pays off But why aren t most automakers and their suppliers dealing appropriately with the matter Lindner Because they feel greater pressure