Why evidence of security is not prove of protection

Why evidence of security is not prove of protection

WHAT IS THE DIFFERENCE BETWEEN SECURITY AND PROTECTION? At Pharos, we often point out that “evidence of security is not proof of protection”. What do we mean? The BIG GAP between security and business leadership It’s no secret that CISO’s and security programs often...
6 Questions every CISO must answer

6 Questions every CISO must answer

THE PROTECTION PROBLEM SPACE VS. THE SECURITY PROBLEM SPACE When a corporate Board invests in security, they expect results. Usually, this means, “Keep us from having a headline making breach.” The threat landscape, the implications for the firm’s risk profile and the...