Cyber Security vs. IT

There has been much confusion around three names in the computer field. Cyber Security (Cybersecurity), Information Technology (IT) and Information Security (InFoSec). I believe knowing the differences between these names will save business owners billions of dollars over the long term. It will equip them to ask the right questions when it comes to saving their businesses from breaches. Today most business owners believed they are protected or believe they won’t get breached because it will always happen to someone else, but not our business.

What is Information Technology?

“Information Technology (IT) refers to the use of computer technology to manage information. The field of IT encompasses all computer software, hardware and related devices employed in the processing, transfer, storage, and dissemination of data whether it’s on a computer, smartphone, TV or other medium. Every time you download a song, stream a movie, check your email or perform a web search, you’re accessing IT services. Areas of study that fall within IT include database development, computer networking, software engineering, data analysis and more”.

Information Security:
“Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. The terms information security, computer security and information assurance are frequently used interchangeably. These fields are interrelated and share the common goals of protecting the confidentiality, integrity and availability of information; however, there are some subtle differences between them. These differences lie primarily in the approach to the subject, the methodologies used, and the areas of concentration. Information security is concerned with the confidentiality, integrity and availability of data regardless of the form the data may take: electronic, print, or other forms.”

Cyber Security:

Cybersecurity personnel understands how hackers can change, intercept or steal transmitted company data within your local network or over the internet. They deploy software or hardware to block or prevent unauthorized access of transmitted data.  They are also known as an “ethical hacker” or penetration tester. They find holes in your network before hackers do and repair them.

Per Cisco:

“Cybersecurity is the practice of protecting systems, networks, and programs from digital attacks. These attacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes.

Implementing effective cybersecurity measures is particularly challenging today because there are more devices than people, and attackers are becoming more innovative”.

Per FireEye:

“Cyber security has never been simple. And because attacks evolve every day as attackers become more inventive, it is critical to properly define cyber security and identify what constitutes good cyber security.

Why is this so important? Because year over year, the worldwide spend for cyber security continues to grow: 71.1 billion in 2014 (7.9% over 2013), and 75 billion in 2015 (4.7% from 2014) and expected to reach 101 billion by 2018. Organizations are starting to understand that malware is a publicly available commodity that makes it easy for anyone to become a cyber attacker, and even more companies offer security solutions that do little to defend against attacks. Cyber security demands focus and dedication.

Cyber security protects the data and integrity of computing assets belonging to or connecting to an organization’s network. Its purpose is to defend those assets against all threat actors throughout the entire life cycle of a cyber attack.

Kill chains, zero-day attacks, ransomware, alert fatigue and budgetary constraints are just a few of the challenges that cyber security professionals face. Cyber security experts need a stronger understanding of these topics and many others, to be able to confront those challenges more effectively.

The following articles each cover a specific cyber security topic to provide insights into the modern security environment, the cyber threat landscape and attacker mentality, including how attackers work, what tools they use, what vulnerabilities they target and what they’re really after”.

So there you have it!
Business owners might still get confuse when they hear these terms, but a good way to think this thru is to remember years ago how you never heard of companies losing billions of dollars from people who never been to the USA or stepped into your local bank and are able to withdraw from your account that at times seems very difficult when you go thru a drive-thru.

The bad guys can by-pass those tellers that you think should know you by now. So cyber security personels are here to fight those bad guys on their level to protect your assets and critical data.

Leave a Comment

Your email address will not be published. Required fields are marked *

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.