Security is not an event, it's a process

By Gary Hunt, CAE, OSCPA communications director

Technology improves, cyber criminals innovate and IT security professionals work to keep up.

That’s the way things are now, said Paul Fields, a senior security analyst from the data security firm ITSecureNow.

“As soon as a hacker’s hack gets fixed and patched and doesn’t work anymore, the hacker is working on the next one,” Fields said. “And that doesn’t stop.”

We spoke with Fields and ITSecureNow Solutions Architect Trent Heer on the latest episode of OSCPA Spotlight (which you can view above), and on our podcast, The State of Business with the Ohio Society of CPAs.

They said one key to stay ahead of security problems is continuous education. And Heer cautioned that business leaders also need to stay aware of internal threats.

“Sometimes people make mistakes,” Heer said. “Sometimes you have customers or vendors where you are sharing systems information; they make mistakes. And, unfortunately, sometimes you end up with a disgruntled employee that makes a malicious choice on their way out of the company, and that hurts you. So, there are more threats than just the cybercriminals: we need to be aware of all of these.”

Watch the episode above to learn more. And be sure to catch Fields and Heer next week at OSCPA’s Health Care Summit.

Health Care Summit

Oct. 24 | Webcast

Oct. 24 | Columbus