Excellent points, many thanks for sharing. Often times I've seen checklists with a higher priority on keeping patching/updating software on systems over Encryption everywhere. While I don't see these two at all as mutually exclusive, I do think (and agree with the author) that the value always lies with the data, so yeah - if you patch all you can and never have to worry about a breach (not including Zero-Days, but that's a whole other conversation) , then "yay! for you" but at the end of the day, if something / someone wants to get at you say, internally, and can bypass all that lovely patching.... well, encryption really is your friend there. Just sayin'.
Excellent points, many thanks for sharing. Often times I've seen checklists with a higher priority on keeping patching/updating software on systems over Encryption everywhere. While I don't see these two at all as mutually exclusive, I do think (and agree with the author) that the value always lies with the data, so yeah - if you patch all you can and never have to worry about a breach (not including Zero-Days, but that's a whole other conversation) , then "yay! for you" but at the end of the day, if something / someone wants to get at you say, internally, and can bypass all that lovely patching.... well, encryption really is your friend there. Just sayin'.
Thanks for your comment! Yeah, defense in layers. π