Compliance is NOT Security

Three cheers for Art Coviello, president of EMC's RSA division. In his keynote speech on Tuesday at the RSA conference, he got it straight -- compliance isn't security. It's about checking off lists that don't always correlate to an organization's specific information security needs.

I wasn't there, but I read about it in Computer World.