Sign in / up

Security

This article is more than 1 year old

What's impacting IT security today?

Assessing the changing direction of security

icon Jon Collins
Thu 29 Apr 2010 // 12:37 UTC

Mini Poll Okay, we've banged on often enough about how security shouldn't be about products - it should be about making sure our data is adequately protected and all such good ideas. But the question is just how practical is this? We know a whole load of change is coming to IT today, some internal and some external. We also know that the bad guys are getting badder, smarter and better-equipped to breach the increasingly fragmented protection mechanisms we have in place.

But where should we be focusing our efforts, and how can we be sure to get the right level of buy-in within our organisations to make a difference and protect our IT crown jewels? If you have a few minutes to fill in our poll and let us know how you believe the land lies, we'll feed back the results to you sharpish.

READER POLL: WHAT'S IMPACTING IT SECURITY TODAY?

To begin with, by way of providing some background and context, we'd be interested to know what general trends are having an impact on your organisation. We'll then ask which ones have a specific security impact, before drilling into what you're doing about it.

1. How much are the following currently impacting your organisation at the moment, or have had an impact over the last 3 years?

  Major Impact       No Impact  
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

2. Considering this same list, how much impact has each item had on the way you deal with security today or the way you anticipate dealing with it in the future?

  Major Impact       No Impact   Anticipate significant
future impact
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

3. Bearing in mind the above, how would you characterise the level of involvement of the following in defining needs and making decisions with regard to security measures?

  High and remaining so High but decreasing Historically limited but increasing Historically limited and remaining low N/A
Board-level execs
Finance management
Risk management
Senior security director/chief security manager or equivalent
IT security specialists
IT management
Operational management
External advisors (eg consultants)
Customers/partners/suppliers
Individual users
Other (please specify)

4. Given all of this, in an ideal world, where do you think the emphasis with respect to security should be placed looking forward?

  High priority Secondary priority Low priority N/A – already sorted Unsure
Strengthening security policy
Increasing security training for employees
Taking a more joined up architectural approach to security
Increasing the tooling you have in place in specific areas
Allocating security responsibilities to a specific role
Getting the board more actively involved with respect to security
Increasing awareness and understanding of risk within the business
Improving the dialogue between IT and the business regarding security
Other (please specify)

5. Any other general comments on the current state of security in your organisation?

 

BEFORE YOU GO

6. Approximately how large is your organisation (worldwide) in terms of employees?

Less than 10 employees
10 to 50 employees
50 to 250 employees
250 to 1,000 employees
1,000 to 5,000 employees
5,000 to 10,000 employees
Over 10,000 employees

7. Which of the following best describes your organisation?

Energy & utilities
Financial services
Healthcare
Hi-tech
Manufacturing
Oil & gas
Pharmaceuticals
Central/local government
Retail & wholesale
Professional services
Telecommunications
Travel & transportation
Other (please specify)

More about

COMMENTS

TIP US OFF

Send us news

Other stories you might like