Strategic Security: A Struggle For Balance
A $499 VALUE
Underwritten for a limited time courtesy of Symantec.
Security spending is flat. Half of the nearly 600 business technology and security professionals responding to our 2009 Strategic Security survey say they believe their organizations are neither more nor less vulnerable to attacks and breaches than they were a year ago. Authorized insiders are still seen as the No. 1 threat, and firewalls and antivirus remain atop the hit list of most-effective security practices.
All in all, 2009 looks a lot like 2008.
What we want to know: Is no news good news? Maybe information security professionals have finally achieved some equilibrium thanks to better strategic planning and risk awareness. Or maybe we’re just treading water, caught between the rock of a down economy and the hard place of high-profile breaches and ever more regulation. Maybe we’re barely able to maintain the status quo, such as it is.
Maybe we should be worried.
In this InformationWeek Analytics report, we’ll examine the security stasis vs. strategic maturity question and delve into results of our survey of nearly 600 business technology professionals.
Download Report, underwritten for a limited time by Symantec.
Table of Contents
- Author's Bio
- Executive Summary
- Research Synopsis
- Same Breaches, Different Year
- IT's Ten-Letter Word
- Manage Risk, Don't Let Risk Manage You
- What Works, What Doesn't
- Encrypt, Encrypt, Encrypt
- Keep Friends Close...
- Dollars and Sense
- Long Arm of the Law
- Appendix
About the Author
Mike Fratto is lead analyst for InformationWeek Analytics. He covers network infrastructure and network access control and has extensive experience evaluating enterprise remote access, security and network infrastructure products. Mike has been with TechWeb for over 11 years and previously was managing editor/labs for InformationWeek and NWC.com, a senior technology editor with Network Computing, and executive editor for Secure Enterprise. Mike speaks regularly at industry conferences, including NetWorld+Interop, MISTI and the Internet Security Conference, as well as to local groups. He also teaches a network security graduate course at Syracuse University. Prior to joining Network Computing, Mike was an independent consultant.
Related Reports
-
Internet Security Threat Report
Symantec has established some of the most comprehensive sources of Internet Threat data in the world through the Global Intelligence Network. These resources give security analysts unparalleled sources of data. Download this Symantec Internet Security Threat Report to read analysis and discussion of threat activity over a one-year period. It covers Internet threat activities, vulnerabilities, malicious code, phishing, spam and security risks as well as future trends.
-
Protect Today, Secure Your Future. Best Practices
Preventing data breaches is a primary challenge. In the past, data protection was simpler because controls focused on one major risk: the network perimeter. By locking down the perimeter, organizations could repel most attacks and keep their information, data, and devices fairly safe.
-
Risk Readiness and Redundancy: PCI Compliance Automation
This paper examines compliance regulations surrounding the Payment Card Industry Data Security Standards, the challenges it puts on IT Security and how by implementing automation you can manage protect and control protect against compromises.
-
Why Data Loss Prevention? Top Security Initiative for Fortune 1000
Do you know where your confidential data is? How is it being used? How to prevent data loss? The research paper from The InfoPro (TIP) delivers the findings to these questions and more as they queried Fortune 1000 IS Professionals.
-
Web Based Attacks
Technology growth on the web has changed the way businesses and consumers communicate and interact with each other. Throughout 2008, Symantec observed a high number of legitimate web sites being compromised and inconspicuously repurposed to serve web attacks, unknown to the visitors of those sites. This report describes the anatomy of web based attacks and examines some of the factors that have influenced a shift toward this type of attack over the last year.
About the Sponsor
Symantec is a global leader in providing security, storage and systems management solutions to help our customers – from consumers and small businesses to the largest global organizations — secure and manage their information, technology infrastructures and related processes against more risks at more points, more completely and efficiently than any other company. As the world’s fourth largest independent software company and backed by the Global Intelligence Network, our unique focus is to eliminate information, technology and process risks independent of device, platform, interaction or location. Our software and services protect completely, in ways that can be managed easily and with controls that can be enforced automatically — enabling confidence wherever information is used or stored.