What are false positives and the impacts on information security

Understanding “false positives” and how they are used in information security can save companies from falling prey to hackers. Understand why I say this.

In the security area, the professional, the tool or even a security process or control, unlike other areas of technology, is obliged to make multiple decisions during the day.

These decisions make certain users able to access the data to work and, at the same time, keep attackers or fake users away from having the same access.

Therefore, many times these same decision-makers can make mistakes and make wrong decisions, driven even by lack of information or better adjustments in the decision rules.

The objective of the security professional is to find out where these problems can occur and try to solve them with some techniques that I detail throughout the episode of this video.

Author: fabio

Fabio Sobiecki is a systems analyst, graduated from Unopar and specialist in Information Security from Senac and has an MBA from FGV. Since 2004, he works with Information Security, between 1998 and 2004, he worked with information technology, in the area of infrastructure and computer networks. Fabio Sobiecki is certified by (ISC) 2 as CISSP and CCSP, since 2008 and 2017, respectively. He is currently president of the São Paulo chapter (ISC) 2 and is a solutions engineer at RSA.