« Monster.com Sized Data Mishap | Main | Podcast with Cyberoam: The Monster.com Attack Marks a Frightening New Approach to Stealing Data »

While the news and bloggers seems to continually focus on the newest threat (you could almost say in terms of security, if the corporate brand bleeds, it leads), according to Dark Reading, what worries CSO's most is creating and enforcing their company’s security policy.

62 percent of respondents said that their security policy was most critical, and by that they meant that their data was properly secured. That means what's really getting under the CSO's skin is compliance, and the majority said that compliance costs were too high.

Another significant factor weighing on CSO’s is the age of their companies security policies, with 55 percent saying that their company’s policies were either outdated or needed considerable reworking to get inline with current standards. And if that weren’t enough, the company’s that said they were pleased with their policies admitted that they were worried that these policies were essentially being ignored.

The other big concern was encryption, where 62 percent said they either do not have an encryption policy or the one they have is incomplete. The main challenges of encryption is key management, where most companies still manage them manually, which, as the need for encryption grows in leaps and bounds, will quickly create a data bottleneck.

In terms of what companies plan to focus on in the future, a majority of enterprises said they intended to increase their spending on data classification, encryption, and lastly, information leak prevention. That just goes to show you, that while the breaches and the worms grab the headlines, companies still value their internal information assets, and the protection of that information, the most.

Posted by pschooff in Better Protection |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/2269