CyberSecurity

Why Defense In Depth Is Not Good Enough

Why Defense In Depth Is Not Good Enough

By

Joseph Steinberg

Published on December 18, 2017

For many years, information security professionals have discussed, and promoted, a strategy known as “Defense In Depth,” in which an organization utilizes multiple layers of security controls rather than just one layer, with the hope that if some vulnerability exists in one of the layers, the countermeasures in one or more of the other layers will compensate for the deficiencies, and deliver the necessary security. Furthermore, utilizing a proper implementation of Defense In Depth can increase the time that it takes a hacker to penetrate an organization – which also increases the chances of stopping him or her before he or she is able to steal data or commit other harmful acts. Sometimes Defense in Depth is known as layering, or as utilizing the “Castle Approach,” named for the physical security strategy employed by the builders of many of the castles of yesteryear by which multiple physical layered defenses were utilized to prevent breaches of the structures by invaders.

There is, however, a fundamental flaw in many Defense In Depth implementations…

To read on please see my article, Why Defense In Depth Is Not Good Enough.

Continue Reading

Related Topics:

Published on December 18, 2017

More in CyberSecurity

CyberSecurity

Cyber Security Expert Joseph Steinberg To Continue Serving On Newsweek Expert Forum In 2023

By Joseph SteinbergJanuary 10, 2023

Cyber Security Expert, Joseph Steinberg, who joined Newsweek’s Expert Forum in 2021, will continue serving as...
CyberSecurity

Zero Trust Network Architecture vs Zero Trust: What Is the Difference?

By Joseph SteinbergJanuary 4, 2023

Zero Trust is a term that is often misunderstood and misused, which is why I wrote...
CyberSecurity

Let The New Year And Its Blessings Begin

By Joseph SteinbergJanuary 2, 2023

“May the present year’s curses end as it ends, and may the upcoming year’s blessings begin...
CyberSecurity

FBI’s Cyberthreat Information Sharing System Breached By Criminals – Entire User Database Believed Stolen

By Joseph SteinbergDecember 14, 2022

The FBI’s InfraGard program, which facilitates the sharing of information about cyberthreats and some physical threats...
CyberSecurity

CyberWar In Ukraine: A 21st Century Epilogue To The Cold War (InfoGraphic)

By Joseph SteinbergDecember 6, 2022

The era of cyberwar has not only arrived, but is advancing rapidly – and the repercussions...

How Artificial Intelligence Is Transforming Background Checks

Technology Firms–and Users–Scramble to Address Major Security Flaws Found in Nearly All Computers and Phones

▼2023 (4)
- ►January (4)
►2022 (37)
- ►December (4)
- ►November (1)
- ►October (6)
- ►September (1)
- ►August (1)
- ►July (5)
- ►June (3)
- ►May (2)
- ►April (2)
- ►March (3)
- ►February (4)
- ►January (5)
►2021 (47)
- ►December (4)
- ►November (3)
- ►October (2)
- ►September (1)
- ►August (4)
- ►July (2)
- ►June (9)
- ►May (1)
- ►April (3)
- ►March (4)
- ►February (6)
- ►January (8)
►2020 (51)
- ►December (3)
- ►November (4)
- ►October (6)
- ►September (2)
- ►August (6)
- ►July (4)
- ►June (1)
- ►May (3)
- ►April (7)
- ►March (3)
- ►February (2)
- ►January (10)
►2019 (54)
- ►December (4)
- ►November (3)
- ►October (3)
- ►September (5)
- ►August (3)
- ►July (6)
- ►June (5)
- ►May (7)
- ►April (5)
- ►March (3)
- ►February (5)
- ►January (5)
►2018 (106)
- ►December (3)
- ►November (9)
- ►October (3)
- ►September (5)
- ►August (3)
- ►July (10)
- ►June (7)
- ►May (12)
- ►April (16)
- ►March (17)
- ►February (12)
- ►January (9)
►2017 (100)
- ►December (10)
- ►November (6)
- ►October (7)
- ►September (8)
- ►August (4)
- ►July (8)
- ►June (7)
- ►May (8)
- ►April (5)
- ►March (16)
- ►February (13)
- ►January (8)
►2016 (26)
- ►December (11)
- ►November (15)