'Re: Provocative - disband your security team.'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       racf-l
Subject:    Re: Provocative - disband your security team.
From:       Rob Schramm <rob.schramm () GMAIL ! COM>
Date:       2017-08-22 18:49:44
Message-ID: CAN3vrrkmuUVBrd_jNZeSQ+Cnc_p512RSJdm_ty4yv_zUHFzD4w () mail ! gmail ! com
[Download RAW message or body]

There was a MIT paper on making records of bad actors actions available to
everyone.  Relying on transparency to govern the system.  Similar thought
process.

But there is some method to having people outside of the day to day grind
being able to stand up and say .. "we are doing the wrong thing here...".
Of course having said that, all Corp IT eventually reports to the president
of the company.  So, IT sec is never as impartial as some would like us to
believe.

Rob Schramm

On Tue, Aug 22, 2017, 12:25 PM Bogdan Belciu <belciu.bogdan@gmail.com>
wrote:

> Hello,
>
> I think the same.
> Also puting mainframe security in the same pot with distributed platforms'
> security is not a good idea.
> I like that people having no technical knowledge are talking and have
> "great" ideas quoted in newspapers. "Research"... he just discovered the
> mug's handle, brilliant!
>
>
>
> On Tue, Aug 22, 2017 at 5:39 PM, zMan <zedgarhoover@gmail.com> wrote:
>
> > Sorry, dumb idea (not yours, I realize!). As one of the comments says:
> When
> > it's everybody's job, it's nobody's job. Most applications folks think
> RACF
> > is enough for everything (actually, they think it's too much already) and
> > so with no security team, they'll do less and less to secure stuff. That
> > won't end pretty.
> >
> > On Tue, Aug 22, 2017 at 7:51 AM, John McKown <
> john.archie.mckown@gmail.com
> > >
> > wrote:
> >
> > > [quote]
> > >
> > > Disbanding your security team may not be an entirely dumb idea,
> > > because plenty of other people in your organisation already overlap
> > > with their responsibilities, or could usefully do their jobs.
> > >
> > > That's an idea advanced by analyst firm Gartner's vice president and
> > > research fellow Tom Scholtz, who has raised it as a deliberately
> > > provocative gesture to get people thinking about how to best secure
> > > their organisations.
> > >
> > >
> > > [/quote]
> > > http://www.theregister.co.uk/2017/08/22/why_not_disband_
> > > your_security_team/
> > >
> > > --
> > > If you look around the poker table & don't see an obvious sucker, it's
> > you.
> > >
> > > Maranatha! <><
> > > John McKown
> > >
> >
> >
> >
> > --
> > zMan -- "I've got a mainframe and I'm not afraid to use it"
> >
>
>
>
> --
> Best Regards,
> Bogdan Belciu
>
-- 

Rob Schramm
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic