The word ‘accident’ is one of those pet peeves of mine. We see and hear about car crashes, parking deck collapses, spilled milk on the kitchen floor, whatever…they’re all “accidents” people say. Well I’m calling b.s. on the “accident” excuse. If you look at every single “accident” scenario there is always a set of choices and behaviors leading up to it. Guaranteed.
So, when I saw this IDC/RSA report that claims 52% of insider incidents are “accidental” you can imagine what came into my mind. Yeah, they’re “accidental” because somebody somewhere along the line didn’t do what they’re supposed to do. Be it management not supporting the purchase of the right security technologies or mandating periodic security assessments – be it network managers being careless or too overwhelmed and overlooking something critical – or be it users acting carelessly (I mean, who doesn’t understand privacy and security these days?)….there are always choices and behaviors that lead up to these “accidents”.
Not taking responsibility for their actions is just another form of people sticking their heads in the sand. Plain and simple.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”