Feeds

What's impacting IT security today?

Assessing the changing direction of security

  • alert
  • submit to reddit

3 Big data security analytics techniques

Mini Poll Okay, we've banged on often enough about how security shouldn't be about products - it should be about making sure our data is adequately protected and all such good ideas. But the question is just how practical is this? We know a whole load of change is coming to IT today, some internal and some external. We also know that the bad guys are getting badder, smarter and better-equipped to breach the increasingly fragmented protection mechanisms we have in place.

But where should we be focusing our efforts, and how can we be sure to get the right level of buy-in within our organisations to make a difference and protect our IT crown jewels? If you have a few minutes to fill in our poll and let us know how you believe the land lies, we'll feed back the results to you sharpish.

READER POLL: WHAT'S IMPACTING IT SECURITY TODAY?

To begin with, by way of providing some background and context, we'd be interested to know what general trends are having an impact on your organisation. We'll then ask which ones have a specific security impact, before drilling into what you're doing about it.

1. How much are the following currently impacting your organisation at the moment, or have had an impact over the last 3 years?

  Major Impact       No Impact  
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

2. Considering this same list, how much impact has each item had on the way you deal with security today or the way you anticipate dealing with it in the future?

  Major Impact       No Impact   Anticipate significant
future impact
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

3. Bearing in mind the above, how would you characterise the level of involvement of the following in defining needs and making decisions with regard to security measures?

  High and remaining so High but decreasing Historically limited but increasing Historically limited and remaining low N/A
Board-level execs
Finance management
Risk management
Senior security director/chief security manager or equivalent
IT security specialists
IT management
Operational management
External advisors (eg consultants)
Customers/partners/suppliers
Individual users
Other (please specify)

4. Given all of this, in an ideal world, where do you think the emphasis with respect to security should be placed looking forward?

  High priority Secondary priority Low priority N/A – already sorted Unsure
Strengthening security policy
Increasing security training for employees
Taking a more joined up architectural approach to security
Increasing the tooling you have in place in specific areas
Allocating security responsibilities to a specific role
Getting the board more actively involved with respect to security
Increasing awareness and understanding of risk within the business
Improving the dialogue between IT and the business regarding security
Other (please specify)

5. Any other general comments on the current state of security in your organisation?

 

BEFORE YOU GO

6. Approximately how large is your organisation (worldwide) in terms of employees?

Less than 10 employees
10 to 50 employees
50 to 250 employees
250 to 1,000 employees
1,000 to 5,000 employees
5,000 to 10,000 employees
Over 10,000 employees

7. Which of the following best describes your organisation?

Energy & utilities
Financial services
Healthcare
Hi-tech
Manufacturing
Oil & gas
Pharmaceuticals
Central/local government
Retail & wholesale
Professional services
Telecommunications
Travel & transportation
Other (please specify)

3 Big data security analytics techniques

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Arts and crafts store Michaels says 3 million credit cards exposed in breach
Meanwhile, Target investigators prepare for long process in nabbing hackers
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.