- Security goes beyond technology.
- You are a risk advisor and should think like a Manager. You are not the technical person to fix a problem hands-on.
- The ultimate responsibility for security goes to Senior Management.
- Security is driven by a cost / benefit analysis, since budgets aren’t endless.
- The physical safety of people comes before anything else.
- Security should be built-in during the design phase, and not bolted on later.
- A multi-layer defense is preferred.