Embracing an outcome-based approach to cyber security

Network Security Pub Date : 2023-10-01 DOI:10.12968/s1353-4858(23)70046-9

Paul Brucciani

引用次数: 0

Abstract

Cyber security is often seen as an activity separate from an organisation's main business processes. It is something that only comes to the fore when an incident occurs – which may be too late. And this can create a gap between the true security needs of the organisation and its security posture. In contrast, outcome-based security creates direct links between business goals and security requirements.

查看原文本刊更多论文

坚持以结果为本的网络安全方针

网络安全通常被视为独立于企业主要业务流程的一项活动。这是一种只有在事件发生时才显现出来的东西——这可能已经太晚了。这可能会在组织的真实安全需求与其安全状况之间造成差距。相反，基于结果的安全性在业务目标和安全需求之间创建了直接的联系。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Network Security

自引率

0.00%

发文量