« Its time to get real about agentless NAC and Nessus | Main | Pass this man some tissues »

June 21, 2006

Is your data safer with a 3rd party then you?

In a comment to my article on security and control today, someone from Salesboom.com (I don't know this company, so am not biased one way or another here), comments that most companies would do a better job trusting their data to a 3rd party SaaS vendor than trying to secure it themselves.  He made another point about what is important to customers according to a recent study.  OK, thanks for the comment, let me respond.

On the issue of a 3rd party company being safer than yourself, I disagree.  The reasoning cited is that after all, these companies are not in the business of security, but rather in the business of selling something. OK, so are you telling me that salesboom.com or whoever are in the business of security?  Excuse me but it looks like you are in the CRM business and at best security is a factor you will look into depending on how important it is to the customer paying you.  This does not put you in any better position to secure my data than I can.  Except when I am in control, I can directly decide how I want to manage that risk.  This leads to the second point about how important security is to customers.  This goes to the heart of my earlier article and the blog from nCircle.  If security is not important to you, then of course you are going to be more willing to look as SaaS.  If it is, I think you need to look long and hard at this and put your vendor to the test regarding their security.  Especially if their are compliance issues at play.  Just because you outsource, does not let you off the hook!


TrackBack URL for this entry:

Listed below are links to weblogs that reference Is your data safer with a 3rd party then you?:

» The Daily Incite - June 29, 2006 from Security Incite: Analysis on Information Security
June 29, 2006 Good Morning: No more Spanish today, I promise. And true to my word, there wasnt a lot of activity yesterday, so I picked a fight. Actually the fight came to me in the form of Eric Ogren trying to convince me that Microsoft usually [Read More]

» Why are people so shocked re: privacy breaches? from Rational Security
This is getting more and more laughable by the minute. From Dark Reading: JUNE 22, 2006 | Another day, another security breach: In the last 48 hours, Visa, Wachovia, Equifax, and the U.S. Department of Agriculture have joined a growing [Read More]


My Photo

Subscribe to my blog

Enter your email address:

Delivered by FeedBurner

Lijit Search

Blog Networks

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 2.5 License.


Lijit Search

Blog powered by TypePad
Member since 10/2005