19. Failing to secure a fluid perimeter
IT’s responsibility now extends to Starbucks and beyond. The increasing mobility of workers, combined with the proliferation of devices and mixed use of both business and personal technical assets in the workplace and at home, means that IT is now responsible for securing systems on networks it does not control, and for securing internal networks from devices it does not own. In a more decentralized IT environment, centralized approaches to network security are no longer sufficient. Beware the temptation to trust the security of critical assets and data using strategies that do not acknowledge the fluidity of today’s corporate perimeter.