How to create a security strategy that actually works

February 27th, 2019
How to create a security strategy that actually works

At Team Venti, a very common request we hear from clients is, “How can Team Venti help me secure our environment by leveraging Microsoft products and services?”  When I hear this, my first question to the client is, “What are you doing about your security environment today?” or “Can you tell me a little more about your current security strategy?”  See, when it comes to security, the first question shouldn’t be, what new product or feature should I implement? I would encourage clients to take a more holistic approach to security. What do I mean by that, you might ask? Security tools are meaningless unless we have a plan and in order to have a plan, we must fundamentally understand 4 things:

What or who am I attempting to protect?

How am I currently protecting that today?

What type of governance do I currently have in place and how successful are we at enforcing our policies?

What is my ongoing plan to ensure that those policies evolve and keep up with the threat landscape and my business?

You don’t need a massive IT budget in order to accomplish this. Do you need the tools? Sure, but it all starts with the fundamentals. Understanding what you are trying to protect, ensuring that there is a governance plan in place to help protect it, and ensuring those policies are adhered to are key first steps in developing the basis for a sound strategy.

Point products or solutions are NOT always the answer – this is how technology bloat and overspend happens.

Identify, Detect, Protect, Respond – if our clients start their security journey in this order, I think they would all sleep a lot better at night.

Interested in steps you can take today towards ensuring you are running more secure IT? In many cases you may already be paying for great security features you may not even be aware you have and all it takes is some planning and training around it. Contact our staff for a free consultation.