Security is a combination of protection, detection, and reaction. To be effective, security programs need to embrace and leverage all the three processes equally. Many organizations have what would be described primarily as protection programs and not security programs because they look at detection as a fail-safe approach, not as an additional intelligence. Detection deficit disorder (DDD) is a condition referring to the dysfunction of security information gathering and processing. Diagnosing and treating DDD (explaining its three categories) are discussed in this chapter.