An Information Security Place

I am getting all the usual invites for every security company that exists in the world right now, asking me to meet with them at RSA (I have a press badge via the blog).  But what amazes me is how many of these companies want to talk about their new DLP product.  Websense bought Port Authority.  Symantec bought Vontu.  RSA/EMC bought Tablus.  Those are your normal convergence things, I guess.  And now Trend Micro is now billing itself as a DLP company. 

But let’s back up.  I said a while back in another post that compliance is not a product.  And so now I want to say the same thing about data protection.   Data protection is a process.  Yes, product can be a part of the process, but it is not THE process.  And that is how Accuvant is handling it.  We now have a data security practice area with several consultants offering services to help companies protect their data.  We stay vendor neutral and help companies with processes and data identification and classification.  I think this is the way to handle it.

Products will always have a fit, and we will recommend products based on the organizations needs.  But don’t expect the product to take away all your pain.  It ain’t gonna happen.

Vet

OK, to be honest, the first BayouSec had more people than BayouSec II.  But I think this one was more of a success by far for a few reasons.

1. We added two more members ("membership" is used loosely in CitySec gatherings, but you get my meaning)
2. We had good security geek discussions instead of just sitting around and drinking beer (we plan on combining the two next time)
3. We made some good plans for future BayouSec’s
4. The group seems to be intent on the success of the event

We have decided to make this a more educational event.  We would like to have discussion topics and speakers so we can draw people into the event instead of just relying on beer and food.  Those things only get you so far, and it seems like the geek route will draw more people in.  It remains to be seen, but I think it is a good strategy. 

We have a good core group now, and they are inviting their friends to come in as well.  And now we have a good conference room to hold the event (thanks to Sam at Alert Logic for getting that setup, and thanks to Alert Logic management for helping us out).

Vet