Security and Compliance: Asserting Control in a Dangerous World

Security and compliance have been in the news a lot in the last year. Several high-profile breaches have created an impression of failing security and high risk. The reality, of course, is more nuanced. Compliance spending has been increasing, driving up overall security spending. Additionally, companies have increased the frequency of audits and report high levels of success with security and compliance. Still, challenges remain. More than one-third of companies have suffered a breach in the last three years. Meanwhile, user mobility, virtualization and consumerization of IT are making security more difficult. In response, most security teams are moving to an identity-centric model of security, reducing their dependence on perimeters and user location for security. Unfortunately, identity-centric security makes compliance more difficult.