Why Are So Many Companies

Getting Hacked?

A White Paper

By Todd Bell, CISSP, PMP, QSA, MPM, MBA

F e b r u a r y   2 0 1 2

EC-Council www.eccouncil.org/cisoEC-Council www.eccouncil.org/ciso

Why Are So Many Companies

Getting Hacked?

www.eccouncil.org/ciso

1

www.eccouncil.org/ciso

            2

www.eccouncil.org/ciso

            3

It  is  no  secret  that  when  a  security  breach  occurs,  somebody  is  going  lose  their  job.  IT  Security  is  not   just  a  “nice  thing  to  have”,  but  a  necessity.    The  founding  premise  of  an  excellent  IT  

and  technology  purists  that  want  to  drag  down  the  business  with  IT  Security  enhancements  

ally,  internal  business  issues  become  the  problem  of  the  customers.

www.eccouncil.org/ciso

            4

The  data  owner  should  be  provided  with  the  likeli-­‐

are   simple   and   use   nominal   resources.   If   the  presented  security  vulnerability  is  highly  probable  and  the  company  chooses  to  ignore  the  business  

leadership   opportunity   may   be  more   staggering  

warned   the   leadership   team   well   in   advance.      Companies   have   the   opportunity   to   change   this  

only  damage  the  company,  but  the  career  of  those  involved  in  decision  process.

How  real  is  this  problem  and  what  is  

www.eccouncil.org/ciso

            5

About the Author

Todd Bell,

CISSP,  PMP,  QSA,  MPM,  MBA

www.eccouncil.org/ciso

              6

-­‐

-­‐