|
Storage vendors could learn a thing or two from the Redmond gang about plugging holes in leaky systems.
When I joined ESG in 2003, the acronym stood for Enterprise Storage Group. As the company diversified into areas like security, we decided we needed a new middle name. Goodbye "Storage," hello "Strategy" and the Enterprise Strategy Group.
Why am I sharing this story? ESG was a leading storage analyst firm, but fairly unknown outside the spinning disk and magnetic tape crowds. When I joined ESG to start the information security practice, I decided that one of my initial focus areas would be security issues as they relate to storage. ESG had great relationships with storage professionals and vendors, and I found little actual research or writing about storage security. It seemed like a green field, so off I went.
After diving into storage security, I quickly realized why so little had been written on the subject. Storage professionals assumed security was something the networking and server folks had to deal with--a true case where ignorance was bliss. With no user demand for storage security, vendors were more than happy to snub security and concentrate on standard storage functionality around performance and availability.
|
