Many large enterprises have several different groups contained within their security organization. Often included among these groups are the security architecture, security engineering, and security operations/incident response groups. Let's examine briefly what each group does.
Security architecture: This group's main function is to identify security technologies and design solutions that address operational gaps and needs.
Security engineering: This group's main function is to engineer, deploy, and maintain the solutions that the architecture group has designed.
Security operations/incident response: This group's main function is to use security technologies to perform security operations and incident response, as well as to identify operational gaps and needs.
So, as you can see, these three groups are all tightly coupled and depend on one another in order to function at peak effectiveness. There is a virtuous feedback loop here. Architecture relies on security operations/incident response to identify operational gaps and needs. Engineering relies on architecture to design solutions to be implemented. Security operations/incident response relies on engineering to implement technologies required to perform security operations and incident response.
This may seem obvious, but it has always amazed me how many organizations struggle with this inter-dependency. For security executives, it can be helpful to take a moment and ensure that architecture, engineering, and security operations/incident response are all working smoothly together. Having that virtuous feedback loop in place goes a long way toward helping to deliver the right technology solutions that address the most pressing operational gaps and needs. It is difficult for any organization to meet its full potential without technology that suits its true needs.
Security architecture: This group's main function is to identify security technologies and design solutions that address operational gaps and needs.
Security engineering: This group's main function is to engineer, deploy, and maintain the solutions that the architecture group has designed.
Security operations/incident response: This group's main function is to use security technologies to perform security operations and incident response, as well as to identify operational gaps and needs.
So, as you can see, these three groups are all tightly coupled and depend on one another in order to function at peak effectiveness. There is a virtuous feedback loop here. Architecture relies on security operations/incident response to identify operational gaps and needs. Engineering relies on architecture to design solutions to be implemented. Security operations/incident response relies on engineering to implement technologies required to perform security operations and incident response.
This may seem obvious, but it has always amazed me how many organizations struggle with this inter-dependency. For security executives, it can be helpful to take a moment and ensure that architecture, engineering, and security operations/incident response are all working smoothly together. Having that virtuous feedback loop in place goes a long way toward helping to deliver the right technology solutions that address the most pressing operational gaps and needs. It is difficult for any organization to meet its full potential without technology that suits its true needs.
No comments:
Post a Comment