IT professionals often find themselves with objectives that should complement each other but often compete instead. Security and compliance are two such organizational goals, where the achievement of one should enhance the other. But that’s not usually the case, as Wes Miller shows. Read his overview of why being secure doesn't always mean being compliant with the initiatives required, and why being compliant often doesn't mean being secure, or at least not as secure as you should be if compliance truly equated to security. You’ll also find other security and compliance resources in the column, from both within and outside of Microsoft.
PingBack from http://tekorama.com/?p=49