Manage and Improve

Finally, as a security team practices the methodology of the Cisco Security Wheel, they should seek to continually improve their capabilities through proper management. This involves not only the cyclical actions associated with the Security Wheel, but also the unrelenting defense against new and unknown threats.

Good security management includes continuous education through training, practice, and reading. Administrators should keep pace with security newsgroups and publications and should appreciate potential vulnerabilities as they are discovered and before they are automated.

Postmortem sessions after security events should be conducted to investigate lessons learned and reveal places for improvement. Administrators should develop education systems for the employees of the organization who may not be well-informed of good everyday security practices.

The threats against and consequences of participating in the networked environment have not, and will not, stop changing and challenging those who seek to protect an organization's assets. Above all, the security team and infrastructure of an organization must continually evolve to defend against such threats.