Few things stand the test of time . But when he was US Secretary of State for Defence , Donald Rumsfeld gave a speech which contained perhaps one of the most well-remembered , and often quoted phrases from the recent past :
“ We know there are known unknowns ; that is to say we know there are some things we do not know . But there are also unknown unknowns – the ones we don ’ t know we don ’ t know . And if one looks throughout the history of our country and other free countries , it is the latter category that tends to be the difficult ones .”
A bit of a tongue-twister perhaps but the essence of what Mr Rumsfeld said can be applied to all walks of life .
When it comes to cybersecurity , IT landscapes are complex , often untamed and usually unpredictable . There are many known unknowns , and there are even more unknown unknowns . In an environment where attack surfaces are increasing as fast as a workforce is dispersing and cyber criminals are becoming ever more sophisticated in their methods of attack , CISOs and IT security professionals alike are balancing on the precipice of losing control of their users , data , assets and being unable to protect their infrastructure . �