Despite security being a critical issue, many current business systems may not approach it as an all-inclusive, bottom up design issue. When this is the case, those companies need to manage the addition of disparate systems to networks in order not to lose years of investment into those systems. By doing so, the system as a whole becomes more complex and challenging to manage. Companies may go even further and add firewalls, fund a computer emergency response team or create systems to combat attacks on their networks, which leads them to believe they are fully protected. This is a false sense of security; one can never prove the absence of security flaws, only discover previously unknown flaws.
Rather than doing the above, it is much better to include security needs into the design of systems at the earliest stage. Even systems that connected through other systems or are linked between companies need security implemented in their design and ongoing management. Through this program, you will learn about security as an evolving process, and how to take measures to defend systems against constantly changing threats.