Feeds

What's impacting IT security today?

Assessing the changing direction of security

  • alert
  • submit to reddit

Using blade systems to cut costs and sharpen efficiencies

Mini Poll Okay, we've banged on often enough about how security shouldn't be about products - it should be about making sure our data is adequately protected and all such good ideas. But the question is just how practical is this? We know a whole load of change is coming to IT today, some internal and some external. We also know that the bad guys are getting badder, smarter and better-equipped to breach the increasingly fragmented protection mechanisms we have in place.

But where should we be focusing our efforts, and how can we be sure to get the right level of buy-in within our organisations to make a difference and protect our IT crown jewels? If you have a few minutes to fill in our poll and let us know how you believe the land lies, we'll feed back the results to you sharpish.

READER POLL: WHAT'S IMPACTING IT SECURITY TODAY?

To begin with, by way of providing some background and context, we'd be interested to know what general trends are having an impact on your organisation. We'll then ask which ones have a specific security impact, before drilling into what you're doing about it.

1. How much are the following currently impacting your organisation at the moment, or have had an impact over the last 3 years?

  Major Impact       No Impact  
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

2. Considering this same list, how much impact has each item had on the way you deal with security today or the way you anticipate dealing with it in the future?

  Major Impact       No Impact   Anticipate significant
future impact
  5 4 3 2 1 N/A
Regulatory changes
Increased volumes of information being stored
Use of mobile technology (eg laptops, handhelds, USB sticks etc)
Remote access from the field
Wireless access within the workplace
Flexible working practices (eg home working, hot desking etc)
Use of social networking sites such as Facebook, Twitter etc
Use of other public services such as instant messaging, web conferencing, etc
Use of corporate instant messaging, web conferencing, etc (supported by IT)
Employees using their own personal devices for work
Introduction of online services (eg e-commerce and/or customer services)
Customer/partner/supplier system integration or access via extranet portal
Expectations of customers, suppliers, etc with regard to privacy and/or security
Use of hosted services using dedicated resources from outside the organisation
Use of hosted services using shared/co-located/multi-tenant resources from outside the organisation
Virtualisation of IT infrastructure
Other (please specify)

3. Bearing in mind the above, how would you characterise the level of involvement of the following in defining needs and making decisions with regard to security measures?

  High and remaining so High but decreasing Historically limited but increasing Historically limited and remaining low N/A
Board-level execs
Finance management
Risk management
Senior security director/chief security manager or equivalent
IT security specialists
IT management
Operational management
External advisors (eg consultants)
Customers/partners/suppliers
Individual users
Other (please specify)

4. Given all of this, in an ideal world, where do you think the emphasis with respect to security should be placed looking forward?

  High priority Secondary priority Low priority N/A – already sorted Unsure
Strengthening security policy
Increasing security training for employees
Taking a more joined up architectural approach to security
Increasing the tooling you have in place in specific areas
Allocating security responsibilities to a specific role
Getting the board more actively involved with respect to security
Increasing awareness and understanding of risk within the business
Improving the dialogue between IT and the business regarding security
Other (please specify)

5. Any other general comments on the current state of security in your organisation?

 

BEFORE YOU GO

6. Approximately how large is your organisation (worldwide) in terms of employees?

Less than 10 employees
10 to 50 employees
50 to 250 employees
250 to 1,000 employees
1,000 to 5,000 employees
5,000 to 10,000 employees
Over 10,000 employees

7. Which of the following best describes your organisation?

Energy & utilities
Financial services
Healthcare
Hi-tech
Manufacturing
Oil & gas
Pharmaceuticals
Central/local government
Retail & wholesale
Professional services
Telecommunications
Travel & transportation
Other (please specify)

Boost IT visibility and business value

More from The Register

next story
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Four fake Google haxbots hit YOUR WEBSITE every day
Goog the perfect ruse to slip into SEO orfice
Putin: Crack Tor for me and I'll make you a MILLIONAIRE
Russian Interior Ministry offers big pile o' roubles for busting pro-privacy browser
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.