To start, security leaders need to open up to a new perspective, says Gray, chief security strategist at Solutionary, an NTT Group company.
"Security people focus on protecting the organization, protecting the assets," Gray says. "They don't think about the fact that application developers, for instance, don't think that way. They think about features."
The key is for security to be seen as one of those important features, Gray says. "There has to be upper-level management support that the applications developed or implemented by the organization have to include security as a feature."
In an interview recorded at the Gartner Security & Risk Management Summit, Gray discusses:
- The IT and security communications gap;
- How to make security an enterprise priority;
- Why it's up to security leaders to drive organizational change;
Gray brings "in-the-trenches" information security experience to his role as chief security strategist for Solutionary, where he leads the security engineering research team. He is a member of the NTT Group security research team and is directly involved with researching new threats and overall information security trends. Before joining Solutionary, Gray was a technologist for marchFIRST, Idea Integration and Mellon Bank.