Supervising infrastructure deployment

Delegating security tasks to IT

Implementing security measures effectively

Software piracy

Intellectual property protection

Technical protection measures enforcement

Selecting specific accounts for attack

Trying every possible combination of a password

Using widely known passwords for guessing

Advising on strategic information management

Enforcing information security policies

Reviewing technical aspects of security projects

Top-down Approach

Bottom-up Approach

Middle-out Approach

Stealing sensitive information

Gaining unauthorized access

Disrupting normal system functions

Data Custodian

Data Owner

Data User