????2011年曾被專家們視為“安全漏洞之年”。如今，2012年剛剛過去了2個月，但一系列轟動一時的黑客攻擊事件已經使得2011年相形見絀。公司、政府機構遭到安全襲擊的消息不絕于耳。

????因此，一個完全在意料之中的現象是，世界各地的組織如今都在圍繞數據中心建立城墻和護城河，保護資產、信息和知識產權。盡管做起來或許有難度，但我依然要敦促信息技術和安全事務的管理者抬起頭環顧四周，同時考慮不斷變化的現實。現如今，考慮信息安全意味著需要考慮周圍的整個世界。

????信息已經越過了寫字樓的四堵墻，正在改善我們的生活和工作方式。無論身處何地，云計算和智能手機都能讓我們獲取重要信息。越來越多的產業都在產品和服務中植入了智能化信息。全世界數千百萬計的傳感器正在幫助世人更好地了解事物的運行和我們所處的環境。現在，大量產業都采用了嵌入式的技術，以前所未有的方式與我們緊密聯系，而能源、零售和醫療保健只不過是冰山之一角而已。

????目前的挑戰是，規模較大的組織每天需要監控數以億計的事件，甚至包括一些發生在其業務邊緣、數據中心之外的活動。肉眼凡胎沒有能力篩選如此龐大的數據。

????迅速擴大的威脅覆蓋面和來源為一種新型的安全防范方式鋪平了道路，即依托于智能化信息的安保方式。智能安保體系采用先進的分析和自動化技術，從組織上下的數百個來源中收集信息。通過梳理源自網絡、應用程序、用戶活動和移動終端的數據，這種分析技術能夠幫助企業更好地理解正常行為的基準，進而使其更迅速、更清晰地識別異常事件，以預測、防范并最低限度地減少其影響。

????毫無疑問，技術將繼續向我們的生活滲透拓展，這種趨勢為企業界提供了巨大的商機。展望未來，安全管理將深深植根于深入理解我們這個高度互聯的生態體系，而不是依靠安全措施與外界相互隔絕。安全的性質正在發生改變，我們這些安全領域的從業者有責任幫助我們的不同的機構和行業理解這種變化。

????新型的安全觀（其特征是更好的智能化信息、更少的信息儲備，以及對我們周圍世界的認識）能夠幫助組織更好地保護今日之運作，布局明日之創新。能夠著眼于周圍世界、不斷調整安保方式的企業將成為同行中的佼佼者。

????本文作者馬克?范?扎德爾霍夫在戰略、風險投資、商業開發和IT及安全營銷領域擁有近20年的從業經歷。馬克目前在IBM安全系統部（IBM Security Systems）擔任負責全球戰略和產品管理的副總裁，安全系統部負責IBM公司全球軟件產品的總體管理、預算和定位工作。馬克在IBM的首要職責包括在并購、產品管理和軟件及服務營銷等領域扮演領導角色。馬克曾經是荷蘭Consul公司的高管成員之一，這家公司后來被出售給IBM公司。此后，在加盟IBM之前，他還從事過信息技術風險投資和戰略咨詢等方面的工作。馬克現居于華盛頓特區。

????譯者：任文科

????Already in the first two months of 2012, high profile hacks are threatening to make 2011, characterized by experts as "The Year of the Security Breach", seem tame. It's becoming a common occurrence to hear about companies and governments falling victim to security attacks.

????Therefore it isn't a surprise that today organizations around the world are focused on building up walls and moats around their data centers to protect their assets, information and intellectual property. But as hard it is might be to do, I urge IT and security mangers to lift their heads up and look around and consider a changing reality. Thinking about information security today means thinking about the world around you.

????Information has evolved beyond the four walls of the office and is improving the way we live and work. Cloud computing and smartphones let us access key information wherever we are. More of the world has built-in computerized intelligence in its products and services. Millions and millions of sensors have been deployed around the globe to drive better real-time insight to operations and conditions. Energy, retail and healthcare are just a few of the industries that are now embedded with technology and connected with us in ways that were never before possible.

????The challenge is that larger organizations need to monitor hundreds of millions of events per day, even activities that are happening on the edge of their business and outside the datacenter. There's no way humans can sift through that amount of data.

????The rapid pace of this expanding threat surface and sources paves the way for a new approach to security -- one that is based on intelligence. Security intelligence applies advanced analytics and automation technology to the collection of information from hundreds of sources across an organization. By combing through data from networks, applications, user activity and mobile endpoints, analytics can help firms better understand a baseline of normal behavior. Then analytics can help a firm more quickly and clearly flag abnormal events to predict, prevent and minimize the impact.

????There's no doubt that technology will continue to expand into our lives and offers great opportunity for our businesses. Going forward, security management is going to be rooted in better understanding our highly connected ecosystem, not by the isolation that the security can create. It's our role as security practitioners to educate our organizations and industries on security's changing nature.

????Having a new approach to security -- one defined by greater intelligence, fewer silos and awareness of the world around us -- can help organizations better protect their operations today and plan for tomorrow's innovation. The firms able to evolve their security style with an eye to world around us will be ahead of the pack.

????Marc van Zadelhoff has nearly 20 years of experience in strategy, venture capital, business development and marketing in the IT and security space. Currently, Marc is the VP, Worldwide Strategy and Product Management for IBM Security Systems –responsible for overall product management, budget and positioning for IBM's full software portfolio globally. Marc's prior responsibilities at IBM have included leadership roles in M&A, product management and marketing in both software and services. Marc was a member of the executive team of Dutch-based Consul before it sold to IBM and spent the rest of his pre-IBM years in IT venture capital and strategy consulting. Marc lives in Washington, DC.