https://www.iotworldtoday.com/wp-content/themes/ioti_child/assets/images/logo/IoTWorldToday-mobile-logo.png
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
Iot World Today
  • NEWSLETTER
  • Home
  • News
    • Back
    • Roundups
  • Strategy
  • Special Reports
  • Business Resources
    • Back
    • Webinars
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Podcasts
    • Strategic Partners
    • Latest videos
  • More
    • Back
    • About Us
    • Contact
    • Advertise
    • Editorial Submissions
  • Events
  • newsletter
  • IIoT
  • Cities
  • Energy
  • Homes/Buildings
  • Transportation/Logistics
  • Connected Health Care
  • Retail
  • AI
  • Metaverse
  • Development
  • Security
ioti.com

Security


Thinkstock

Security

Tackling the IoT Security Challenge: A Business-Minded Approach

It may be tricky to ask for an ROI on your security spending, but IoT security is best viewed through a business lens.
  • Written by Brian Buntz
  • 22nd January 2018

“Forget about perfection; focus on progression, and compound the improvements.” —Sir Dave Brailsford

In the early 2000s, there was an apparent uptick in experts claiming to make surprising discoveries by applying statistics and economics to random-seeming subjects. The 2003 book “Moneyball” explored the use of analytical tools to competitive baseball. Two years after that, “Freakonomics” used economic theory to analyze such subjects as sumo wrestling and parenting. In 2002, Sir Dave Brailsford brought the idea of continuous improvement, a hallmark of Kaizen and Six Sigma methodologies to British cycling. Having earned an MBA, Brailsford helped popularize what he termed “aggregation of marginal gains.” The basic idea is that an organization can make dramatic progress by taking a complex problem, breaking it into smaller elements and aiming to improve each of those by 1 percent. Long story short, Brailsford went on see great success at the Olympics and later, with Britain’s first professional cycling team.

The time is ripe to embrace such an analytics– and economics-driven approach to address the current IoT security challenge. A casual glance at the IoT security landscape reveals a whirlwind of vendors with dramatically different messaging and products. Listening to the profusion of messages can lead to the conclusion that an organization can achieve a rarified security level by purchasing a slew of security products and services. But your organization could spend an infinite level on IoT security and still get hacked.

[Internet of Things World demonstrates how the next generation of IoT will converge to unlock the intelligence of things in the industrial, enterprise and consumer realms. See what’s new for 2018.]

Framing security through an economic lens — and working with partners that share that vision — is a more fruitful approach than viewing cybersecurity in binary terms.

In the IT space, the idea of risk alignment in business and security has been popular for about a decade. But while it is easy to pay lip service to the notion of business-minded IoT security, there are numerous examples of insecure IoT products in the field today that indicate this approach is rarer than it should be.

The problem is often rooted in a cultural disconnect that separates executives as well as IT and OT professionals. “Executives generally treat [security] like a technical problem handled by technical people buried in IT,” said Paul Proctor, VP and distinguished analyst at Gartner at the last Gartner Symposium in Barcelona. In theory, executives want their products to be secure “until you start telling them that it is going to double their budget, double their schedule and negatively impact customer experience,’” Proctor added. 

Something similar to this scenario is happening in the IoT world, where too many organizations hawking IoT products have been lackadaisical about security, rushing products to the market with security snafus such as hard-coded passwords, insecure web interfaces and shoddy cloud interfaces.

While there is certainly a value in analyzing common IoT security challenges and mistakes, it is perhaps more helpful to view them as symptoms of a larger problem: carelessness. There’s also the idea that achieving IoT security is a goal that runs counter to business aims — triggering, for instance delays, usability hassles and added costs. But organizations with such a cavalier attitude toward security invite “black swan” events — “high-impact events that are rare and unpredictable, but in retrospect seem not so improbable,” as Harvard Business Review puts it. In the IoT realm, such episodes are costly and can even have fatal consequences under the right circumstances. For instance, a 2015 Jeep hack by a pair of security researchers managed to trigger a recall of 1.4 million vehicles by remotely killing a Jeep on the freeway with the driver’s consent. Imagine the possible consequences if black hat hackers pulled a similar stunt to an unsuspecting motorist.

Given the very real possibility for such outcomes, organizations should view security as a critical business consideration, working to improve their security posture at every possible level and with every team member. By incrementally improving security throughout, organizations can dramatically curb their risk of falling prey to cyber disasters, while developing a higher resolution view of the state of their business and the risks it faces. In fact, each discrete business unit within an organization should “decide how much security they want and how much they want to spend,” Proctor recommended. Proctor also is a fan of framing security like Olympic medals — with gold, silver and bronze options.   

Organizations shooting for gold-security would do well to take to heart Sir Dave Brailsford’s so-called podium principles, built on strategy, performance and continuous improvement. Such an approach can transform security from something that seems abstract and unobtainable to something vital and within reach, as the prospect of winning gold medals first seemed to the British Cycling team in 2002 — when they won just one gold medal in 76 years. “To give you a bit of background, when we first started out, the top of the Olympic podium seemed like a very long way away. Aiming for gold was too daunting,” Brailsford told Harvard Business Review. In the 2008 and 2012 Olympics, the team went on to win seven of the 10 gold medals possible. What a difference a bit of economic theory and some hard work can make — for athletics, IoT or nearly anything else. 

Tags: Article Security Technologies

Related Content


  • Caltech campus
    Robots Could Gain Sense of Touch, With New Artificial Skin
    New design can help businesses determine the presence of hazardous materials, offer greater safety for workers
  • Clearview AI Fined $9.4M Over Facial Data Scraping
    The company was ordered to delete any data it held on U.K. citizens.
  • Microsoft Ramping up Cybersecurity Service Offerings
    Three new managed services will boost the company’s presence in the security space
  • IoT Product Roundup
    IoT Product Roundup: PTC, Nokia, Arm and More
    All the latest Internet of Things products

Leave a comment Cancel reply

-or-

Log in with your IoT World Today account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Latest News

  • Microsoft Extends Secured-Core Program to IoT Devices
  • Spot the Robot Dog Helps Police Ahead of Boston’s Fourth of July Celebration
  • Unmanned Robotic Combat Vehicle Being Tested
  • Image shows a Close up of lens on black background
    Carnegie Mellon Researchers Invent System to Find Hidden Cameras

Roundups

View all

IoT Product Roundup: Canonical, InfluxData, Wiliot and More

23rd June 2022

IoT Product Roundup: Cisco, Telit, Draganfly and More

9th June 2022

IoT Deals, Partnerships Roundup: Google, Arm, Senet and More

26th May 2022

White Papers

View all

The Role of Manufacturing Technology in Continuous Improvement Ebook

6th April 2022

IIoT Platform Trends for Manufacturing in 2022

6th April 2022

Latest Videos

View all
Image shows Unilever's Alberto Prado at AI Summit 2022 in London

AI Summit 2022: Unilever’s Alberto Prado

Prado talks about how Unilever is using AI to accelerate the speed of new discoveries and gives them access to more breakthrough innovation

Image Shows John Lewis' Barry Panai at AI Summit London 2022

AI Summit 2022: John Lewis’ Barry Panayi on AI in Retail

Panayi talks about data and AI in retail and how individuals and the technology can work together

E-books

View all

How Remote Access Helps Enterprises Improve IT Service and Employee Satisfaction

12th January 2022

An Integrated Approach to IoT Security

6th November 2020

Webinars

View all

Rethinking the Database in the IoT Era

18th May 2022

Jumpstarting Industrial IoT solutions with an edge data management platform

12th May 2022

AI led Digital Transformation of Manufacturing: Time is NOW

9th December 2021

Special Reports

View all

Omdia’s Smart Home Market Dynamics Report

7th January 2022

Cybersecurity Protection Increasingly Depends on Machine Learning

28th October 2020

IoT Security Best Practices for Industry and Enterprise

20th October 2020

Twitter

IoTWorldToday, IoTWorldSeries

IoT Product Roundup: Nokia, Energous, Dashbot and more dlvr.it/STRKDh https://t.co/YgTAI5SXSB

6th July 2022
IoTWorldToday, IoTWorldSeries

A new #IoT bug monitoring system from @CENSIS121 is helping the UK’s #forestry industry fight pests, and save money… twitter.com/i/web/status/1…

6th July 2022
IoTWorldToday, IoTWorldSeries

NHTSA Boss Hints at Federally Regulating Autonomous Vehicles dlvr.it/STQrrw https://t.co/Yjp1UKuaE5

6th July 2022
IoTWorldToday, IoTWorldSeries

Nvidia Powered Driverless Three-Wheelers Set to Debut dlvr.it/STQq0H https://t.co/RrYyVPgFzB

6th July 2022
IoTWorldToday, IoTWorldSeries

New Drone System Aims for Full Autonomy dlvr.it/STQnvV https://t.co/S4O8hb6gQh

6th July 2022
IoTWorldToday, IoTWorldSeries

Bosch, VW Approved to Develop Automated Driving dlvr.it/STQllD https://t.co/neI30dVmC6

6th July 2022
IoTWorldToday, IoTWorldSeries

🤔 Looking for 3 Strategies to Avoid IoT Key Theft? We’ve got you covered! As tech companies continue to develop an… twitter.com/i/web/status/1…

5th July 2022
IoTWorldToday, IoTWorldSeries

AI Summit 2022: Unilever’s Alberto Prado dlvr.it/STMpRN https://t.co/1dyLREr8N6

5th July 2022

Newsletter

Sign up for IoT World Today newsletters: vertical industry coverage on Tuesdays and horizontal tech coverage on Thursdays.

Special Reports

Our Special Reports take an in-depth look at key topics within the IoT space. Download our latest reports.

Business Resources

Find the latest white papers and other resources from selected vendors.

Media Kit and Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • IoT World Series
  • Channel Futures
  • RISC-V
  • Dark Reading
  • ITPro Today
  • Web Hosting Talk

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Login/Register

FOLLOW IoT World Today ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X