Why the 80-20 Rule is Only Half the Battle

The 80-20 rule of information security is now widely accepted not only among cyber security professionals but among high-level executives as well. And that's certainly a sign of progress. It means that organizations are waking up to the importance of cyber hygiene, much like the medical profession realized more than 100 years ago that the vast majority of hospital-acquired infections could be prevented if doctors simply washed their hands.