Read up on the latest ideas and technologies from companies that sell hardware, software and services. Solve Exchange Storage Problems Once and For All: A New Approach without Stubs or Links
Taking On Demand CRM Integration to the Next Level
Optimized Back-up and Recovery for VMWare for VMWare Infrastructure with EMC Avamar
Why Security SaaS Makes Sense Today
Social Networking Guide for IT Managers
Radicati Market Quadrant 2008 on Corporate Web Security
Cutting printer costs
CRM your salespeople will love
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
When it comes to outsourcing security functions, skepticism still rules the day for many users. The idea of handing over control of network security to an outside firm paid to maintain gear, monitor for attacks, perform scans, collect logs or update security software for employees is, to say the least, controversial.
Security managers are split on the issue, arguing it's either a boon or bane for the company. According to advocates, outsourcing security gives in-house IT staff a chance to be freed up from mundane tasks to deal with more strategic matters without having to take on additional staff. The naysayers worry that outsourcing means losing sight of security risks because outsiders will mechanically follow a contract without thinking critically enough. Whether outsourcing is cost-effective is part of the debate, too, but the central question of control stirs the greater emotion.
Those bullish on security outsourcing say it's a way to move their in-house security specialists, already in short supply, into more strategic jobs while making sure everyday tasks get done.
"We either have to bring in more internal IT people or get other people through outsourcing security services," says Andre Gold, lead, IT risk management in the North American arm of ING, the Holland-based global financial services firm.
Gold says tasks such as patch and vulnerability management tasks or antivirus support are consuming a lot of staff time that might be better used in strategic risk-management operations for online business goals with partners and customers, for instance.
"I'd rather push the ING people up the ladder," Gold says, noting that next month ING expects to select at least one security outsourcing provider -- it may be offshore in India or elsewhere -- for large, multiyear contracts to handle a wide variety of data and network-security management remotely.
"I call it security right-sourcing," Gold says, adding that ING already outsources some IT maintenance and application development. Consequently, advocating security outsourcing was not a culture shock at the company. Gold says he expects security outsourcing to prove cost-effective over adding in-house staff, but he says in this case, it's not the primary motivator for doing it.
Computerworld Member Login
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Australian SMBs Love of Mobile Phones and Increased Data Speeds Will Drive Mobile Spending Higher, Finds IDC 2008-10-08 10:21:00+10
VeCommerce Launches Top Ten List of Personal Security Breaches In Lead Up to National ID Fraud Awareness Week 2008-10-07 15:10:00+10
Multimedia Technology signs exclusive National distribution agreement with Freecom 2008-10-07 14:30:00+10
Open Text: Upheaval in the Financial Markets Sharpens the Focus on Information Governance and Enterprise 2008-10-07 13:19:00+10
Symantec State of Spam Report - October 2008 2008-10-07 11:58:00+10
Email Archiving 101—Customer Case Study
Join Lee Benjamin, a Microsoft Exchange MVP and Ryan Shipkowski, network administrator for Matthews, to discuss the process and ROI of implementing an email archiving solution, with emphasis on a case study from Matthews International.
