Sister CISA CISSP

Jun 3 2008   3:01PM GMT

Eigen’s 2008 InfoSecurity “Rules of Thumb”



Posted by: Arian Eigen Heald
Tags:
Compliance
Eigen's Rules of Thumb
IT audit
Security
Steps to an Easy Audit
Tools & Tricks of the Trade
Tools for Auditing and Security

Rule #1 – You can pay now, or you can pay later, but if you choose to pay later, you will pay MORE.

Rule #2 – You can outsource function, but you cannot outsource responsibility.

Rule #3 – A classic, shamelessly plagiarized: “Faster, Better, Cheaper. Pick TWO.”

Rule #4 – Make NICE with your auditors, no matter how dumb they are.

Rule # 5 – The volume of company executives screaming about the “cost” of information security is the direct inverse of how little money they’ve put into it in the past.

Rule # 6 – Don’t expect the best audit from the cheapest bidder. You get exactly what you pay for. Unless, of course, that’s exactly what you want. See Rule #1.

Rule # 7 – Compliance with regulations is a Gentleman’s C.

Rule # 8 – If you have “checkbox security,” you will have a box full of checks. Paid to other people.

Rule # 9 – The skills of your IT people directly relate to the training they receive. See Rule #1.

Rule #10 – No more acronyms! PCMCIA.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: