Information security and how well companies are protecting their confidential data is a popular topic, frequently making television, newspaper and internet headlines. A recent study by PwC US, in conjunction with CIO and CSO magazines, provided some quantitative data about the current state of information security.
The study reflected the opinions and policies of 9,600 security executives from 138 countries. When asked to define their position on information security, the executives responded with:
- 43% classify themselves as “frontrunners” and think they have an effective, proactive security strategy.
- 27% identify themselves as “strategists” and felt they had the right security plan but didn’t always execute it.
- 15% felt that they were “tacticians” while another 14% felt they were “firefighters” because they simply responded to security threats and issues.
These statistics illustrate that more than 4 out of 10 executives feel their security policies are on the leading edge. Yet, as the research dug deeper into the company’s security policies, only 13% of the companies actually received the “leader” or “frontrunner” designation.
To help you understand what makes a company a leader in security, we’ve outlined a few criteria:
- Develop and implement a comprehensive security policy that covers electronic and paper information.
- Understand the threats unique to your company and how to mitigate the risks.
- Appoint a security information executive or CIO that reports at a high level on security policy and effectiveness.
- Earmark a security information budget to ensure the initiative has enough funding to be successful.
With these tips in mind, you can evaluate how important of a priority information security truly is and whether your company is doing everything it can to protect its information and ensure a successful future.
to view the complete survery