We worry about security for years now, we put efforts into protection measures - and yet computer systems and software seem to be increasingly vulnerable and insecure. So, what is this “security”, why do we really care, how do we deal with it at CERN, and - in particular - what can each of us (developer, sysadmin, user etc.) do in order not to be the next victim?