According to a recent FBI/CSI report, most organizations have firewall and intrusion detection systems. However, in recent years, the number of hacks and data compromises has increased significantly. Does this mean that the firewalls and intrusion detection systems are not effective against these attacks?
Another viewpoint to this predicament is the possibility that organizations are getting bad advice from sales consultants. Aggressive sales tactics are causing administrators to deploy products not suitable for the business. The urgency to do something quick is causing information security administrators to jump on the marketing pitch instead of the need to align with the business objectives and protect the organization.
Review at least three industry publications and explain why cybersecurity administrators are missing the target when investing in cyber defenses. In your opinion, what can be done to align cyber investment to business goals? Your response should be at least 250 words.