For some time now, we’ve been writing about how traditional methods of identifying stranded IT assets fall far short, because of the fact that utilization-based metrics do not accurately reflect value returned to the business by the IT asset. Enterprises are living with substantial drag on their IT operations budgets because of unused or underused servers and server software.
Security and Comatose Servers
What I’m wondering now is, to what extent do you see this as a security issue for the data center? It would seem that in the most obvious case, unused or underused servers represent an unnecessary increase in the surface area of the IT estate, thus contributing to increased risk. However, are there more concrete exposures here?
To gather your feedback, we are creating the poll shown on this blog here, to gauge the community’s thinking on this.
Do we treat servers that we don’t understand well, any differently from a security event perspective? Do we treat them differently from a security operations perspective?
We look forward to your response and a more detailed discussion of this in the coming weeks.