What are some famous information security quotes from IT professionals? And what are the lesson we can learn from them? Well, read this post so you’ll never gonna miss them.
The Problem
An IT professional knows that an effective security strategy is not enough. But, you also need to convince your boss to sign off on it. This can be easier said than done.
However, the problem sometimes is that leaders just don’t seem to “get it”. Especially when speaking about the importance of cybersecurity. So, have a look at the following quotes to help your boss take IT security seriously.
Top Information Security Quotes You Don’t Want To Miss
Quote #1: When Your Boss Doesn’t Want To Spend The Money
“If you spend more time on coffee than on IT security, you will be hacked. What’s more, you deserve to be hacked.”
- Richard Clarke, White House Cybersecurity Advisor, 1992-2003
Lesson: Remind your boss to spend their money investing in cybersecurity.
Quote #2: When He Thinks Security Is Just An IT Issue
“Thinking of cybersecurity solely as an IT issue is like believing that a company’s entire workforce, from the CEO down, is just one big HR issue.”
- Steven Chabinsky, Global Chair of Data, Privacy & Cybersecurity at White & Case LLP
Lesson: Don’t think of security as just an IT issue. Because if you do, you will face trouble. Additionally, every person at the company is a potential avenue for a security breach. Thus it’s important to train every about information security.
Quote #3: When Your Boss Doesn’t Get The Stakes
“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”
- Stéphane Nappo, Global Chief Information Security Officer at Société Générale International Banking
Lesson: Executives and founders dedicated long hours to build their organization’s reputation. A cybersecurity incident may ruin those years of hard work when your boss doesn’t get the stakes.
Quote #4: When Your Boss Thinks There’s An “Easy Button”
“There’s no silver bullet solution with cybersecurity, a layered defense is the only viable defense.”
- James Scott, Institute for Critical Infrastructure Technology
Lesson: Some bosses only think that there should be a single tool or solution that automatically takes care of the security thing. But there’s no such thing for security. Rather, you can achieve true security with the help of a broad collection of complementary tools. As well as a layered defense.
Quote #5: When He Isn’t Looking Long-Term
“One of the tests of leadership is the ability to recognize a problem before it becomes an emergency.”
- Arnold H. Glasow, Author & Businessman
Lesson: Leaders can see where things are headed long before they arrive. So, you can use this quote to frame a proactive approach to security. Just think of it as a “test of leadership” that they’ll want to pass.
Quote #6: When Your Boss Says It’s Too Risky
“There are risks and costs to a program of action — but they are far less than the long-range cost of comfortable inaction.”
- John F. Kennedy, 35th President of the United States
Lesson: Leaders sometimes find the risk in a security measure. These supposed risks may include wastes of time. As well as ill-spent money and security fatigue. Thus, the quote above recognizes that there are inevitable risks in any action. But these risks are often worth it.