The curriculum of business schools are filled with case studies of companies that took short cuts to become competitive and accomplished the exact opposite.  For the information security world, there is a similar “penny-wise, pound-foolish” behavior in the notorious “Checkbox Assessment.”  These are security or compliance assessments that have little basis in reality and are […]