5 Questions CSOs need to ask IT teams

Security experts sometimes disagree on various things, but there’s one thing we all agree on: most data centers are just begging to be hacked. They’re the perfect targets for a breach – after all, they house a lot of sensitive information. Just take a look at the number of recent incidents in which security was compromised so far in 2016. There have been more than 2,260 breaches throughout the world, and we can assume most of these took place right under the noses of chief information officers (CIOs).

With a myriad of other responsibilities on their plate, today’s CIOs aren’t equipped to handle all of the security issues that come with managing a data center. Chief security officers (CSOs), on the other hand, can bring a whole new light to data center management and protection.

That’s why it’s about time CSOs get more involved in data center decisions from the very beginning. To implement a successful security program for your data center, it is important for the CSO to be aware of the information contained within it. Gaining this data awareness means preparing to answer questions like:

  • Are we storing anything sensitive, like credit card numbers or financial records?
  • Who has access to our data?
  • Are certain files being deleted unintentionally?

Without this awareness, it is nearly impossible for a CSO to help strategize a plan that will protect the company, its data and its customers.

So, CSOs – how much do you know about what sits inside your data center? These are the top five questions you should be asking your IT team:

  • What kind of information do we have?
  • Where is our data being stored?
  • What security plans are already in place?
  • Where are there gaps in our program?
  • What are the security laws with which we need to comply?

If you don’t know the answers to each of these questions, it’s time to have a conversation with your IT team. For a strong approach to data center security, you need your company to break out of its silos – and remember that a bit of teamwork can go a long way.

Check out our SlideShare to learn more about how CSOs can get involved in the data center.

  Like This
Andrew Hay

Andrew Hay

With over 15 years of data security experience in various roles inside organizations as well as advising them, Andrew serves as the chief information security officer at DataGravity. He is responsible for the development and delivery of the company’s comprehensive data security strategy. Prior to DataGravity, Andrew was the director of research at OpenDNS (acquired by Cisco) and the director of applied security research and chief evangelist at CloudPassage.