Information security generally refers to defending information from unauthorized access, use, disclosure, disruption, modification or deletion from threats. Organizations are constantly facing threats that exist both externally as well as internally – be they from nation states, political activists, corporate competitors or even disgruntled employees.

Defending an organization from these threats is hard because it requires a significant amount of effort, insight, and investment. It’s also difficult for non-technical users to appreciate its importance; that is until a security breach cripples or even destroys even the most carefully constructed organization. To such an extent, it is important to understand the concept of defense in depth when tasked with defending an organization from threats.

Source: DZone