Challenges faced today by computer security practitioners

Abstract

Summary form only given. It is noted that computer security practitioners still experience difficulty in: educating management and users at all levels; securing cooperation from other security professionals and auditors; making proper use of available security technology; accurately assessing the threats, vulnerabilities, and adequacy of safeguards; and persuading management of the importance of this. It is concluded that getting management's approval is the most critical element in computer security, since it is management that must make budget decisions that finance better computer security. Once management has a greater appreciation for computer security, the other factors should fall into place.<>