With the federal government entering into the space of breach laws can organizations still play around with security practices? What is the standard acceptable best practice for security in any sized organization and where is the burden placed as businesses and non-profits move more of their infrastructure into the cloud? These are all questions that we as security professionals need to be asking.
I have been doing information assurance and security work for many years with a focus on network security monitoring and incident handling. I have been working in IT for more than fifteen years with a focus on architecture and systems.