Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Confessions of a Paranoid IT Director

Posted April 6, 2011    Peter McCalister

Hi, my name is Betty, I’m an IT Director at a large utility company and it’s been 1 week since my VP of Software Development complained that security was locked down too tight to get anything done. (All together now) HI BETTY!

I know this is a support group for IT Directors suffering from governance, risk and compliance issues, but candidly I don’t acknowledge that I, or my organization, has a problem.  I’ve locked down every network, server, desktop, cloud and virtual environment so tightly that it takes a call to the help desk anytime someone needs admin rights to do anything.  Sure, our help desk costs skyrocketed, but this way I have complete control over who does what to our IT systems and can guarantee security to my boss.

The other problem that I have to ignore frequently is the VP of the Software Development organization who is constant complaining that his team can’t get anything done and will be missing their deadlines because of my security policies.  He is now threatening to break into our data center and reprogram all security policies one night, so I am evaluating new physical security measures as well.

I recently saw an ad for Guido the Gorilla who is trained to protect IT assets the old fashioned way…with intimidation and brute force.  Do you think he will be worth the investment or not worth his weight in bananas?

Leave a Reply

Additional articles


Answering the age-old question, ‘What’s plugged into my network?’

Posted October 9, 2015    Alejandro DaCosta

“What’s plugged into my network?” is a question I hear frequently from security administrators. And, really, it’s no surprise why. No longer do we have to account just for the physical servers in our datacenters, workstations and a few network devices. Now we need to keep track of roaming laptops, dynamic virtual systems, off-site cloud deployments and BYOD.


Closing the Vulnerability Gap

Posted October 7, 2015    Brian Chappell

Managing vulnerabilities is a significant challenge for many organizations. The main difficulties with managing this manifest in two key areas. The first is that the list isn’t static. The second is priority.


Scottrade Breach: Identified by Federal Officials

Posted October 5, 2015    Morey Haber

Late afternoon on October 2nd, news leaked out of another large security breach, now at Scottrade. The identity count of records, in the millions again (4.6 million is the latest). This breach comes on the second day of national CyberSecurity month, the first being Experian/T-Mobile breach.