We are Handling Security the Wrong Way

We are currently handling information security the wrong way. * Sony was breached through an outdated Apache server. * 47% of developers don't know if their open source is out of date. * Why do we use vulnerability scanners to identify assets? * We hire penetration testers before having a "simple" security process in place. This talk covers how organizations, large and small, can benefit from looking at security in a new way.