Compliance says that we need to log everything within scope, we must then review the reports of the logs. Can we really be trusted to look at all of these reports, and if so can we really get anything constructive out of them?
How often do you need to allow one of your external service providers to access one of your critical resources or temporarily increase the privileges of someone in your IT team?
Recent times are littered with examples of businesses who failed to recognise the changing demands of their consumers and paid a heavy price.
A friend of ours over at @experts_911 found this old post. It tells the story of how a couple of IT admins had to turn detective and figure out who had altered a Windows Group Policy which was denying access to the internet for everyone in their business.
