Balance is an important concept to keep in mind for a well-designed cybersecurity program. Just as a healthy diet requires a balance of fruits, vegetables, proteins, carbohydrates and other necessities, a healthy cybersecurity program requires similar equilibrium.
Over the years, I have had the opportunity to work with hundreds of companies across many industries and of varying size. It is amazing to see the number of companies that rely too heavily on cybersecurity products in their security programs. They are continuously searching for a silver bullet that will solve all of their problems and make their concerns disappear. While technological products are important, the reality is that a healthy cybersecurity program requires a balance of people, processes and technology to be truly effective.
Any security professional who is a technician at heart enjoys tinkering with a new, shiny toy. Even newcomers to the industry quickly see there is no shortage of new tools to test drive. By some counts there are more than 1,200 technology vendors playing in the cybersecurity market. Despite the target-rich environment, security teams should be leery of chasing the latest and greatest tools until they have assessed the real need for the added capabilities.