Awareness also requires action

Amy Schurr (Network World)
05 October, 2004 14:25
Comments

Information security is everyone's business, but that message doesn't always filter up to the highest level of the organisation. New research from Ernst & Young finds that companies should be doing more to safeguard their data.

The 2004 Ernst & Young Global Information Security Survey is based on responses from 1,233 worldwide organisations. Of these respondents, more than 70% failed to identify training and raising employee awareness of information security issues as a top initiative.

Companies are generally focused on external threats such as viruses, and are putting technology measures such as firewalls and anti-virus software in place to reduce these risks. But not enough attention is being paid to internal threats.

"While the public's attention remains focused upon the external threats, companies face far greater damage from insiders' misconduct, omissions, oversights, or an organisational culture that violates existing standards," says Edwin Bennett, global director of Ernst & Young's Technology and Security Risk Services. "Because many insider incidents are based on concealment, organizations often are unaware they're being victimized."

Bennett recommends creating a security-conscious culture at the top. The CEO and the board must approach security as a way to gain competitive advantage and preserve shareholder value rather than as a necessary cost of doing business.

"More could and should be done to transform the skills and awareness of their people, who often present the greatest opportunity for vulnerabilities - and convert them into its strongest layer of defense," he says.

For the complete survey results, go to: http://www.ey.com/global/content.nsf/International/Home

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: Ernst & Young, Ernst & Young

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Whitepapers

10 Ways to Stretch your storage budgets in virtualised, consolidated environments

Everyone’s heard the line about the only inevitabilities in life being death and taxes. IT managers, however, would quickly assert a third absolute – higher storage needs. There’s no question data storage requirements continue to skyrocket, and there’s absolutely zero likelihood of that ending any time in our lifetime. Enterprises have successfully controlled their IT budgets and server sprawl issues with the help of virtualisation technologies, but what’s next? Increasingly, organizations are turning to storage consolidation for virtualised server environments in order to reduce data center costs and inefficiencies.

Featured Download

Gadwin Web Snapshot

Gadwin Web Snapshot will effectively capture the entire page including all design elements when capturing web pages. It makes an image of the browser’s content ...

Zones

Most Popular Whitepapers

Process-Driven Master Data Management for Dummies

We wrote this book to introduce you to the subject of processdriven MDM. It’s a big topic, one that far outstrips the ability of a brief book to cover. However, our hope is that by reading this book you will gain a fundamental understanding of processdriven MDM, how it works, and what it takes to make it a success in your organisation.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management

Latest Jobs

CCOBIEE ConsultantWA
CCAvaya Engineer - ERS 8600 4.1NSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTTechnical Services Engineer - ShoreTel/MitelVIC
CCSAP PM ConsultantNSW
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTChange Management ProfessionalsNSW
FTSenior Citrix EngineerNSW
FTSAP Basis ConsultantNSW
FTSAP Basis ConsultantACT
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTSenior Citrix EngineerNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTProduct Manager Strategist - Enterprise ApplicationsNSW
CCSAP FICO ConsultantNT
FTQM Trainer and ConsultantNSW
FTiPhone App DeveloperNSW
FTiPhone Developer DeveloperNSW
FTiPhone App DeveloperNSW
FTiPhone App DeveloperNSW
CCPC Relocation Technicians - Multiple Roles availableSA
FTIT Service Desk EngineerNSW
FTIT Service Desk EngineerNSW

Market Place

Awareness also requires action

Comments

Post new comment

NBN ISS could pose capacity constraints

Coalition NBN better or worse?

Bredolab botnet author sentenced to 4 years in prison in Armenia

Alternatives to Raspberry Pi you can get right now

Which tablet should I buy? iPad 2 vs Sony Tablet S

NBN ISS could pose capacity constraints

NBN service plans won't cost consumers more: Conroy

Microsoft at a loss over Event Viewer scam

Stallman: If you want freedom don't follow Linus Torvalds

Coalition NBN better or worse?

CeBIT 2012: Will NBN speed up freight delivery times?

10 Ways to Stretch your storage budgets in virtualised, consolidated environments

Delivering Tomorrow's Backup and Recovery Infrastructure

Setting a strategy for secure mobile printing

INFORMATION FOR SUCCESS - Customers Achieve Extreme Performance at Lowest Cost with Oracle Exadata Database Machine

Gadwin Web Snapshot

Avaya Air Cover Zone

Application Lifecycle Management

HP Converged Storage Zone

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Process-Driven Master Data Management for Dummies

Business Intelligence Best Practices for Dashboard Design

Learning To Compete: IT’s Next Transformation

Seven Steps to Effective Data Governance

Guidance for Calculation of Efficiency (PUE) in Data Centers

Computerworld newsletter

Don't have an account?

Awareness also requires action

Comments

Post new comment

Computerworld newsletter