When IT security costs are cut, which security product is a must?

When IT security costs are cut, which security product is a must?

With IT security costs being cut and threats increasing, what would be the best single product/device investment for a corporate network to increase security?

    Requires Free Membership to View

    Login

    SearchSecurity.co.UK members gain immediate and unlimited access to breaking UK industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.co.UK today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.co.uk you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.co.uk is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

This is impossible to answer without knowing more about what business you are in, your existing network infrastructure, your existing security controls and so on.

Therefore, instead I'll recommend that you buy a copy of ISO/IEC 27002:2005 -- the Code of Practice for Information Security -- and use this as a checklist to determine what is missing and what you need to do.

This document of information security guidelines and general principles has been invaluable to me to help clients determine their existing security posture and prioritise their planning. The Code of Practice is available to purchase from BSI.

This was first published in May 2009