- Passwords

            - Pain
            - Annoyance
            - Slows down their work

            - Guns or guards

            - Someone else's problem
            To a senior manager, security is often seen as a:
            - Cost

            - Liability
            - Risk

            - Technology
            In fact, most senior managers are not convinced that protection
            really  adds  value  to  the  organization  at  all.  Instead,  it  is  a
            necessary  cost,  and  in  many  cases,  they  just  hope  that  it  is
            working. The average manager often believes that information
            security is something they are doing as best they can.  But not at
            all sure that the security program is really working effectively or
            would be able to withstand a concerted attack from a team of
            skilled hackers.

            What  is  information  security  to  an  information  security
            professional?
            In  class,  I  often  ask  the  security  professionals  what  the  term
            "security" represents to them. Even here, the answers vary widely.
            On  a  forum  years  ago,  a  security  professional  mentioned  a
            challenge they had just faced. They stepped into an elevator on
            the 14th floor of their building headed outside for lunch and some
            fresh  air.  The  elevator  stopped  on  the  12th  floor,  and  the