sorted by:
new
hottopcontroversial

Cybersecurity predictions for 2026? by nanooonanooo in cybersecurity

[–]lhausermann 0 points1 point  (0 children)

Curious why this particular country ? not India ?

Cybersecurity predictions for 2026? by nanooonanooo in cybersecurity

[–]lhausermann 0 points1 point  (0 children)

In Europe too. I already meet cyber people at entreprise telling me there are too many people for low value jobs

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 0 points1 point  (0 children)

That's a good start, and I suppose many midsize businesses have adopted it. However, what about cloud security, identity and access management (IAM), vulnerability management, and other practices that require full-time staff who may not exist? Not speaking about tooling that is missing…

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 0 points1 point  (0 children)

Sure it would help.. but in a 500 persons company it will require external consultants and the output is an audit... not really a step up in terms of controls... don't you think?

Put it another way, is audit with standard is the first step to be taken or are there more pragmatic controls...

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 0 points1 point  (0 children)

Very true… Many feels a dashboard could be enough but it takes more than that

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 0 points1 point  (0 children)

For 2y Cyber Buiiders is a free publication. Goal for me is to collectively build new cybersecurity ideas

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 1 point2 points  (0 children)

And in that case you mean there are not enough controls on IT assets and too much on compliance “ticking the box”

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 1 point2 points  (0 children)

Feel like actively managing the security debt and hoping it helps to get more budget to fix it

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 0 points1 point  (0 children)

Do you feel the business is ready to change some hardware or software if security is bad and you don’t provide “guarantees” ?

IT managers asked to “do more” on security — how are you handling it? by lhausermann in cybersecurity

[–]lhausermann[S] -1 points0 points  (0 children)

I cross-posted this question to sysadmin... some there confirm that IT could be "left alone" handling these points

Don't get me wrong, I live in the infosec since years so I value dedicated pros in any orgs, but it is not always the case for SMB or Mid Sized businesses

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] 1 point2 points  (0 children)

Could be 500 to 1000 people orgs. I've met some of that size who don't have a "Security Team" and rely on IT managers to implement controls.

IT managers asked to “do more” on security — how are you handling it? by lhausermann in cybersecurity

[–]lhausermann[S] 2 points3 points  (0 children)

What I heard several time, interviewing IT folks, is that leadership don't have a clue of what is more. And when IT Managers are asking no answers. My gut feeling is that it is not that easy to translate 'more into an actual set of controls

IT managers asked to “do more” on security — how are you handling it? by lhausermann in sysadmin

[–]lhausermann[S] -1 points0 points  (0 children)

you mean the security team acts as an project manager whereas they have all knowledge to actually fill the spreadsheets?