Banishing The Backseat Drivers

March 30, 2022

2 min read

Sean Steele is co-founder and managing
partner at Infolock.

In This Article

Join Our Newsletter

Follow Us


If you’re in security, you know how aggressive vendor sales people are; without understanding your needs, they have what you should buy, right now.

Except it’s not true – no vendor or salesperson knows what you need, or how best to provide it, without taking the time to understand your organization, its strengths, and its unique challenges:

  • Do they know what new business initiatives you’re launching?
  • Are they aware you’re planning to consolidate operations?
  • Have they discussed your overseas expansion and corporate acquisition plans?
  • Do they understand your culture?

Assessing your organization’s security posture takes time and effort. One must get to know your people, map out your processes, and analyze your technologies. But it’s an investment that pays back massive dividends; armed with the insights gathered from an in-depth analysis, you can target initiatives, pinpoint gaps, and deploy scarce resources for maximum effect.

How easy is it for you to secure the buy-in from your team to perform such an assessment? In our experience, without a data breach, security incident, or failed audit, it’s often nearly impossible.

One way to “flip the script” is to seize on the positive reasons for an in-depth, outside security assessment, and communicate those reasons to your senior leaders who aren’t directly involved:

  • Focus – Are we wrapping technology around our customers / employees? Or letting the opposite happen?
  • Alignment – Our business strategy is moving in one direction, but what about our security program?
  • Efficiency – Are our security processes restricting our organizational flexibility and agility?
  • Cost-savings – Is our security spend delivering maximum value? How much goes toward technology versus staff training, additional internal resources, and outside expertise?
  • Enlistment – Isn’t the security of the organization’s most critical assets everyone’s responsibility? Shouldn’t it be a shared duty?

At Infolock, we engage deeply to assess our client’s security situation; we understand that “an ounce of prevention is worth a pound of cure.” Try these easy next steps:

  • Sit down with co-workers to capture what their security experiences and challenges are.
  • Take the time to spotlight the “human wins” that security has secured for your team.
  • Ask your Board, CFO, COO, or Chief Legal Officer to consider (and then act on) how security empowers your organization to be more responsive, flexible, adaptable, and competitive.

We think you’ll agree, kicking security vendors out of the backseat while you drive the car is the only way to reach your destination.

Related Posts

Flip The Script: Let The Attackers “Win”
What does it look like when organizations do their data security and risk management homework upfront,

2 min read

April 5, 2023

Cybersecurity Is Dead — What Now?
We must stop insisting cybersecurity can "win" the war against cybercriminals, because we've already lost.

2 min read

March 10, 2023

4 In 4: 4 Insights From My First 4 Months At Infolock
After four months on the job at Infolock, I want to let prospective customers and employees know.

2 min read

April 7, 2021

Challenge The Status Quo
Quick fix technology solutions aren't a substaitute for hard work and careful planning.

2 min read

January 16, 2023

Data Breach Cynicism Takes Hold
In more than 20 years of working in the IT security industry, I’ve helped literally hundreds of companies

2 min read

November 14, 2022

Ciso, We Have A Problem
Since 2001, I’ve worked with hundreds – even thousands – of infosec practitioners: analysts, engineers, technicians,

2 min read

August 17, 2022

It’s The Data, Stupid!
Data is notoriously messy. It’s clear most organizations have lost control of it – or, never had control of it in the first place.

2 min read

June 26, 2022

Peak Vendor: Reclaiming Infosec Priorities And Budgets In The Age Of Big Marketing
I’m not sure when the bubble began. Three years ago? Five? Security needs

2 min read

May 3, 2023

Banishing The Backseat Drivers
If you’re in security, you know how

2 min read

March 30, 2022

Vendors Know You Too Well
Could you imagine walking into a car dealership without:

2 min read

January 15, 2022