Fish tanks
In terms of cybersecurity, this unconventional example highlights the importance of securing all devices and systems within an organization, not just traditional computers and networks. Internet-connected fish tanks may seem like a minor security concern, but they can serve as easy entry points for hackers to gain access to other connected systems. This is because many devices now contain computing power and connectivity, known as the Internet of Things (IoT).
The focus on compliance rather than conformance in cybersecurity can also lead to overlooked security vulnerabilities in IoT devices. Non-experts who are tasked with ensuring compliance may not have the technical expertise to fully understand the risks and implications of non-traditional systems. This can result in a lack of attention given to securing these devices, which can pose serious threats to an organization's overall security posture.
To address this issue, organizations should prioritize conformance over compliance when it comes to cybersecurity measures. This means going beyond just meeting regulatory requirements and instead focusing on implementing comprehensive cybersecurity strategies that consider the entire technology landscape, including IoT devices. By doing so, organizations can better protect themselves from emerging threats and mitigate the risks posed by unconventional entry points like internet-connected fish tanks.