The three key stages of the security lifecycle are prevention, detection and remediation. Why state the obvious? Because something is seriously skewed in how enterprises currently approach security and in particular, security spending. First there is prevention, which includes tools such as antivirus software and firewalls to keep the enemy at the gates. Detection involves intrusion recognition systems that identify an attack once it has breached the network perimeters.