| |||||||||
| |||||||||
Current Filter: Security>>>>>> Cold Shoulder Treatment Editorial Type: Industry Focus Date: 09-2013 Views: 3308 Key Topics: Security Cybercrime Security breaches Best Practice Compliance Risk Assessment Key Companies: IT Governance NCC Group Deloitte SafeNet Key Products: Key Industries: Government | |||
| Many organisations are failing to adopt established industry best practice to protect their clients' information. The need for increased compliance is a fact of life, warns cyber security experts IT Governance Despite increasing calls for improved cyber security by an overwhelming majority of customers, a recent survey by cyber security experts IT Governance reveals that many suppliers are continuing to give the cold shoulder to protecting client information. According to IT Governance's international 'Boardroom Cyber Watch' survey of senior executive opinion about cyber security, a weighty 74% of respondents at home and abroad say their customers prefer to deal with suppliers with proven IT security credentials. A further 50%, meanwhile, say customers have enquired about their company's security measures in the past 12 months.
FAILURE TO COMPLY It reveals that, despite being known to 87% of participating organisations, ISO/IEC 27001 is complied with by only 35% of respondents. An international best practice standard designed for any organisation seeking a structured framework to address cyber risk, ISO/IEC 27001 significantly improves an organisation's information security and resilience. The 2013 cyber report also finds that a substantial minority - over 40% - of senior executives and IT professionals say that their company is either making the wrong level of investment in information security, or are unsure if their investment is appropriate.
COMPETITIVE ADVANTAGE "Indeed, given that a globally recognised best practice framework for addressing the risks related to systems, people and technology already exists in the shape of ISO/IEC 27001, it's surprising to see such a large number of suppliers still resisting the opportunity to demonstrate their credibility." Calder adds: "In the face of constantly evolving new threats around the globe, the need for increased compliance is a fact of life. Companies must therefore ensure that their defences are in a state of constant evolution - so much so that any organisation which handles customers' personal data, for example, but is not compliant with ISO27001, is at risk of displaying overt negligence." "If you're serious about giving your company cast-iron security credentials, it's essential to implement and maintain compliance with an internationally recognised security standard. Compliance doesn't just open the door to more business; it allows you to sleep more soundly at night." The 'Boardroom Cyber Watch 2013' study was conducted online in April and May 2013, with the aim of shining fresh light on how company directors and board members currently perceive IT security issues. Incorporating chief executives, board directors and IT professionals, its 260 respondents represent organisations of all sizes, with revenues ranging from less than US$5m to more than US$500m.
| ||
Like this article? Click here to get the Newsletter and Magazine Free! | |||
Email The Editor! OR Forward Article | Go Top | ||
PREVIOUS | NEXT |