Posted by Bev Robb on April 29, 2015.
This morning I accepted a new LinkedIn connection who works for Johns Hopkins University and SANs. Aside from all of his certifications, and over a decade of security experience — he is also recognized as a strong security advocate and change agent; is self-driven, self-motivated, and result-orientated. Though he obviously holds many credentials and is was well recognized in his field — it was his headline alone that sparked this blog post.
I am still sitting here at my desk this morning marveling at the power of these four simple words:
SECURITY IS EVERYONES RESPONSIBILITY.
These words have the capability to empower each one of us to take responsibility. We do not have to become victims of our own devices. It does not matter if we are nineteen or ninety-nine — security is everyone’s responsibility.
IoT devices have exploded in popularity in recent years, with major tech firms and startups alike pouring funds into developing devices ranging from smart home security systems to sensor-laden fridges and mood lighting. It is estimated that by 2020, 25 billion connected devices — including IoT products — will be in use worldwide. —Charlie Osborne, ZDNet
When we purchase laptops, computers, Smartphones, tablets, and IoT devices (smart TVs, wearable tech, thermostats, home lighting, baby & elder monitors, etc) — IN REALITY, it is the responsibility of engineers and manufacturers to provide strong baseline security for all devices, and easy-to-understand end user documentation (videos, guides, tutorials) to teach us how to secure our devices. This is not how it actually plays out though. Often enough, we buy a product that comes with crappy documentation and mediocre support.
Think about it. We drag our digital devices into some of the most private and intimate moments of our lives. Into our bedrooms, into our bathrooms, and into the hearth where family and friends gather. We embrace the latest technologies like they are akin to the softest toilet paper on the planet — and often enough we do not look at the privacy and security implications that ownership of these devices may entail.
Instead, all these instant-gratification-devices become part of the problem — All this wipe–and flush-security is tragic; it doesn’t have to be like this. Like used toilet paper, security is easy to forget once you hit the flush lever.