As I am a true fan of the sessions of Rafal Lukawiecki. And the fact that he is talking about really interesting subjects leads me directly to his todays session “Holistic Security”.
“You know all the security technologies, but are you secure? How much should security cost? The tough realities of today make security of enterprise systems one of the highest priorities on most IT Professionals’ agenda. This conceptual, rather than technical, session will overview security from a holistic, process-oriented perspective. While still uncommon, this approach seems to best model the threats that affect our installations. This way of looking at security is based on risk assessment and worries about all aspects of the system equally: we do not want to be building bullet-proof steel doors in a house made of paper walls. After discussing the main challenges that make achieving optimal security difficult, we will concentrate on three process-based holistic approaches: OCTAVE, Simplified Security Risk Analysis, and Threat Modelling.”
This panoramic view is in my opinion by far the best I’ve made this week. Enjoy.