[ISN] Australian infosec budgets are probably wrong: Deloitte

http://www.zdnet.com/article/australian-infosec-budgets-are-probably-wrong-deloitte/ By Stilgherrian ZDNet News February 4, 2015 Australian organisations are lagging when it comes to shifting the focus of their information security efforts from merely securing their networks to detecting intrusions, responding to them, and building resilience, according to senior security and risk executives from Deloitte, the international consulting firm. Deloitte divides an organisation’s infosec spend into three areas, each labelled with an adjective. “Secure” is the technology that protects critical assets against known and emerging threats across the ecosystem. This includes traditional network protection capabilities such as firewalls, anti-malware and anti-spam systems, and intrusion detection and prevention systems (IDS/IPS). “Vigilant” is about having the intelligence and monitoring capabilities to detect both known and unknown bad-guy activities, and understanding the extent to which they’re a risk to the business. […]