Wednesday, November 7, 2007

Business of Information Security

Information Security, even when is ushered rings bells in everyone’s mind.  It is often taken in negative senses and is seen as a Show Stopper.  But is it so?

 

Why can’t we take a step forward to understand the term of Information Security and create a Business friendly definition of the same?

 

What I opine and openly state that though Information Security is not a Revenue Earner, but certainly adds to the Profits of the organization.  Well its interesting that how a Cost Centre can add to the Profits??  Now here, the first thing I would like to correct is that Information Security Team is not a Cost Centre, rather is a Profit Centre.  The reason I call it a Profit Centre is the fact that it is the Information Security Team that works in real time to patch the vulnerabilities and keep the Risk Spectrum more or less in check and under the acceptable limits.  This certainly lessens the overall impact of the Risks that materialize and thus reduce the Financial Losses that the Organization might incur. So now that when the Information Security efforts lead to fewer losses and that means the bottom line is more that is the profits DO surge.

 

I guess I have clearly made my point from the way I look a things.  Anyone there to discuss this further????

 

 

 

Mayank

 

No comments: