Titanic – The Most Compliant Ship of Its Time

titanic11Nothing to get the security versus compliance discussion going than bringing up the famous Titanic disaster in a recent article titled “A History Lesson: Compliance v. Risk and a False Sense of Security”… The author, Greg Boudah, even discusses how NIST’s RMF and the older C&A processes play into this. But even if everything looks great on paper (i.e., the “RMS Titanic was the largest and most compliant ship of its time”), that “compliancy” only provided a false sense of security (i.e., complacency) that ultimately led to its fate.

If an organization scores high, then a false sense of security manifests. “If I have a low risk score and I’m fully compliant with patching and polices, then I shouldn’t be held liable if/when something goes wrong.” This is termed the “Cover Your A$$” strategy. As an example is a history lesson–the RMS Titanic was the largest and most compliant ship of its time. We all know what happened. Tragedy.

Titanic had advanced safety features such as watertight compartments and remote activated watertight doors. Though there weren’t enough lifeboats to accommodate all of those aboard due to the maritime safety regulations of the day, it didn’t matter much to passengers because Titanic was thought to be “unsinkable.” The ship received a series of warnings of drifting ice in the area, but continued to steam at full speed, standard practice at the time. It was generally believed that ice posed little to no danger to large vessels if they were compliant with safety standards. Risks were considered to be low because the compliance was high.

Read the full article here.

#####

Today’s post pic is from Abisaab.Wordpress.com.

9 comments for “Titanic – The Most Compliant Ship of Its Time

  1. March 21, 2015 at 7:14 pm

    Titanic – The Most Compliant Ship of Its Time http://t.co/fbb3e3X9UM

  2. March 21, 2015 at 7:34 pm

    BLOGGED: Titanic – The Most Compliant Ship of Its Time http://t.co/e2nc03gKgB

  3. March 23, 2015 at 11:01 am

    Titanic – The Most Compliant Ship of Its Time – find out more here http://t.co/WzDqGfD8l1 #infosec

  4. March 23, 2015 at 3:02 pm

    Titanic – The Most Compliant Ship of Its Time – find out more here http://t.co/QCNY15HIaG #infosec

  5. March 23, 2015 at 7:29 pm

    randomuserid: RT grecs: Titanic – The Most Compliant Ship of Its Time – find out more here http://t.co/GmtL5QrPd3 #infosec

  6. March 24, 2015 at 11:01 am

    Titanic – The Most Compliant Ship of Its Time – find out more here http://t.co/rNa4lggQXn #infosec

  7. March 24, 2015 at 2:28 pm

    jworrall: Every business exec should read. From novainfosec Titanic – The Most Compliant Ship of Its Time http://t.co/5opuxSJYmQ #infosec

  8. March 25, 2015 at 3:18 am

    Titanic – The Most Compliant Ship of Its Time http://t.co/m1lSitFt6H

  9. March 31, 2015 at 9:01 am

    OUCH RT @SecRich: So very very very, scary true. https://t.co/nrBMWb5wGV http://t.co/2wX2Tecfu3

Leave a Reply

Your email address will not be published. Required fields are marked *