An emerging best practice is to adopt a universal IT security policy built around “Perpetual Paranoia.” In other words, assume something will go wrong and you will never be disappointed