Quiz Entry - updated: 2026.07.14
What are the "three pillars" on which information security is built?
Technology, processes, and people — security fails if any one of them is neglected.
| Pillar | Typical action |
|---|---|
| Technology (Technik) | buy & configure (firewalls, crypto, IDS) |
| Processes (Prozesse) | define & control (policies, procedures, reviews) |
| People (Mitarbeitende) | raise awareness & train |
Why all three: the strongest firewall won't help if an employee hands over their password to a caller (people), or if nobody ever reviews the firewall rules (process). Attackers probe for the weakest pillar — and it's very often the human one.
Tip: "You can't buy security." Two of the three pillars are organisational, not technical.