Feeds

Security pros win out in office politics

Business managers starting to listen (allegedly)

Application security programs and practises

More than a quarter (25.4 per cent) of the security workforce in Europe spends most of their workday dealing with internal politics or selling security to upper management, according to early results from a new survey. The second annual workforce study from security certification and training organisation ISC(2) also found that either researching or implementing new technologies occupied the majority of time for around a third (30.1 per cent) of the 595 experienced security practitioners and managers quizzed.

According to the survey, the efforts of many in the profession to sell their value to the organisations they work for are beginning to pay off. Survey respondents were generally optimistic about levels of influence within their organizations, with a third (33.4 per cent) saying that information security’s level of influence within business units and executive management has significantly increased.

The survey, conducted by analyst firm IDC on behalf of ISC(2), also looked at the places inhabited by security functions within organisations. Around one in five (18.8 per cent) of those quizzed report into a dedicated security or information assurance department, with another one in ten (10.5 per cent) reporting directly to the board of directors and 17.4 per cent to executive management. This compares to around a quarter (28.4 per cent) who indicated they reported directly into an IT department. "We are encouraged to see from the study strong evidence that information security is becoming a domain in its own right, separate from IT, and backed by a swell in the desire to professionalise security as a recognised field of practice," said Sarah Bohne, director of communications at (ISC)2.

Around two-thirds of survey respondents (62.2 per cent) said they would be pursuing information security certifications in the next 12 months. The demand for training reflects a desire by those quizzed to learn broader management skills, with the top areas of interest including information risk management (51.3 per cent), business continuity and disaster recovery (50.6 per cent) and security management practices (44.1 per cent).

A preview of findings from (ISC)2 Information Security: The Shape of the Profession was delivered during a presentation at this week's RSA Europe conference in Vienna, Austria. The full report of global results, including salaries, and the expected rate of growth in the information security workforce, is due to be published in December. ®

Application security programs and practises

More from The Register

next story
BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled
Auntie tight-lipped as major outage rolls on
There's NOTHING on TV in Europe – American video DOMINATES
Even France's mega subsidies don't stop US content onslaught
You! Pirate! Stop pirating, or we shall admonish you politely. Repeatedly, if necessary
And we shall go about telling people you smell. No, not really
Airbus promises Wi-Fi – yay – and 3D movies (meh) in new A330
If the person in front reclines their seat, this could get interesting
UK Parliament rubber-stamps EMERGENCY data grab 'n' keep bill
Just 49 MPs oppose Drip's rushed timetable
Samsung threatens to cut ties with supplier over child labour allegations
Vows to uphold 'zero tolerance' policy on underage workers
Dude, you're getting a Dell – with BITCOIN: IT giant slurps cryptocash
1. Buy PC with Bitcoin. 2. Mine more coins. 3. Goto step 1
US freemium mobile network eyes up Europe
FreedomPop touts 'free' calls, texts and data
prev story

Whitepapers

Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.