Belts and Suspenders - Diversity in Information Technology Security

Diversity in Information Security is a practice that can greatly improve the security of your information assets. Using different techniques and controls can multiply the effectiveness of your security controls in an increasingly diverse risk environment. Using overlapping controls can also provide redundancy that is important if a control should fail. Information Technology security controls and response processes address different areas within your environment. These include network controls, operating system controls and application level controls as well as the monitoring and responses to security events. Attention must be paid to the coverage of the different controls, as the failure to provide protection for one piece of the application or service may lead to the compromise of other areas. Providing adequate protection for all the pieces of your application will ensure its proper functioning and reduce the risk of it being compromised.