image: verdict

Security Think Tank: Almost all security can be outsourced, but not the risk

Almost any critical security control can be outsourced, with a range of services on offer – from low-level, largely commoditised services – such as firewalls, network monitoring and anti-virus management – through to consultancy and bespoke services tailored to a specific organisation and a given deliverable.

Organisations can buy hours, completion of a particular activity or the expertise of an individual, such as CISO-as-a-service offerings. Organisations cannot, however, outsource risk or responsibility.

Read More on ComputerWeekly