If the product being proposed by the priest passes this test, then congratulations, you have a good solution. If not, have the fortitude to ignore the priest and adopt an appropriate solution.
Step 3: Change the culture
Much of what I'm saying is that you need to use data to change the culture. When someone brings you a favorite new solution, ask for data to support the product being pushed. You'll be amazed how many people will keep lobbying for solutions that don't address your actual threat scenarios. I often feel like Jack Nicholson in "A Few Good Men," bellowing, "You can't handle the truth!"
Are you a priest or a mathematician? Do you base your conclusions on strongly held, unexamined belief or hard data? Can you handle the truth?
This story, "With security, prayer is not the answer," was originally published at InfoWorld.com. Keep up on the latest developments in network security and read more of Roger Grimes' Security Adviser blog at InfoWorld.com. For the latest business technology news, follow InfoWorld.com on Twitter.