Ads by TechWords

See your link here
Receive the latest technology news and information.
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
Cloud Computing
View all newsletters




Privacy Policy
 

CSOs creating cultural change

July 23, 2003 12:00 PM ET

Computerworld Australia - SYDNEY -- The convergence of physical and IT security is driving the appointment of chief security officers (CSOs) within the enterprise, a new title that is creating cultural change, the senior cybersecurity consultant at Pinkerton Australia Pty. Ltd., Atif Ahmad, said this week.
Speaking at the Australian Security Industry Association conference in Sydney, Ahmad said some organizations are struggling with the appointment of a CSO because the skills required for the job cover a broad spectrum of both physical and IT security, as well as an understanding of risk management and strong business skills.
For some companies, he said, it's a bit awkward appointing the IT manager as CSO because the individual lacks physical security experience, so the company instead hires someone outside the organization.
In the past, Ahmad said, there was a fundamental separation of IT and physical security with separate budgets, resources, personnel and skill sets.
"As an example, each door has an access control point and whoever had a key had access, which was authentication by possession," he said. It has moved on now to authentication by knowledge using PIN numbers or combination pads.
"And now IT has added authentication by characteristic with a swipe card."
Threats are also more sophisticated in both physical and IT domains, but it goes both ways, he said, IT attacks can cause physical damage and visa versa.
"Technology demands sophisticated infrastructure. As an example, if an organization was to buy CCTV as a method of physical security, it's not just about setting up the camera, it is about total infrastructure integration," Ahmad said.
Chris Thomas, data protection group senior consultant for Computer Associates, said the Open Security Exchange was established in recognition of the convergence of IT and physical security (see story).
He said the group was formed in April to promote the use of security best practices for the protection of physical and IT assets. Other members of the exchange include smartcard maker Gemplus and Software House, a security software company and subsidiary of Tyco Fire & Security.


Reprinted with permission from

Computerworld AustraliaFor more news from Computerworld Australia, visit its Web site. Story copyright 2006 Computerworld New Australia. All rights reserved.

Jump to comments

Security

Additional Resources

Xerox
By using solid ink technology only from Xerox, you could save up to 65% by printing color for the cost of black and white. Enter for a chance to WIN a PhaserTM 8860 network color printer!
Microsoft
Save time and mitigate security risk. Deploy it now.
Sybase
In this white paper, IDC analyzes the role of next-generation mobile enterprise platforms as organizations seek a more strategic deployment of mobile solutions.

Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.

White Papers & Webcasts

Share our Strength
Download Now  

Managing Secure File Transfer to Save Time, Money and IT Resources
Learn how companies are using innovative technology to overcome these challenges and improve user productivity by offloading e-mail attachments and replacing FTP with...

Security Convergence Equals Network Security Cost Savings
Listen to IBM Internet Security Systems' take on network security convergence.

Disaster Recovery 2008: Reduced Costs and Improved Performance
How long can your Enterprise afford to be without your data? With an accelerated disaster recovery program, you never have to answer this...