The traditional definition of information security has been something like the protection of the confidentiality, integrity, availability, authenticity, possession, utility and no-repudiation of our information assets.
How about a new way of thinking about information security:
Getting the right information to the right entity at the right time in the right context to take the right action.
Seems like it encompasses all of the original definition.
Better yet, it’s not so esoteric, sounds much more aligned to the business and it’s all about enablement which ultimately is what information security is supposed to do…
Read Complimentary Relevant Research
Predicts 2017: Artificial Intelligence
Artificial intelligence is changing the way in which organizations innovate and communicate their processes, products and services. Practical...
View Relevant Webinars
How to Protect Mobile Apps
Securely enabling applications on corporate- or employee-owned devices is key to protecting enterprise data from misuse. From containers...
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.