The Evolution of the Information Security Mindset: A Hypothesis of Stages of Individual and Enterpri

This paper explores the evolution of individual and enterprise thinking around information security. A theoretical model of how corporations typically develop and mature in their security strategy is postulated with corroboration from some leading security consultants. The premise of this work is if you can gauge your security stage, you can not only manage it better, but could think through and possibly transcend intermediary stages to fast track you to the ultimate stage of being practically secure. The potential benefits of this work arise from minimizing activity that does not take you on the shortest path to the ultimate stage.