Information Security Survey

by Doug Pollack

PriceWaterhouseCoopers recently published a survey on the information security sector titled “Safeguarding the new currency of business“. Given the continued grow in corporate data breach events, the survey is particularly timely and provides valuable insights to corporate security and privacy officers.

One key conclusion surrounds the investment being made in security technologies during 2008. They noted “double digit advances in implementing new security technologies across virtually every security domain, from prevention to detection.”

Given this, it still begs the question of “why enterprise-wide visibility into the crucial details of actual security incidents is so clouded?” Not only is it difficult to clearer assess data breach events, but technology still does not stem data breaches caused by human error. The proverbial “lost laptop”.

They note appropriately that “the acute focus on technology over the last year has not been matched by an equally robust commitment to other critical drivers of security’s value such as: (1) many of the critical business and security processes that support technology, and (2) the people who administer them.”

This may presage the priorities that we may see taken on in corporate America to address the on-going security breach issues that continue to be so commonplace.