infosec-news February 2011 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] Low security awareness found across IT

[ISN] Low security awareness found across IT

From: InfoSec News <alerts_at_nospam>
Date: Fri Feb 11 2011 - 09:50:30 GMT

By Jaikumar Vijayan
February 10, 2011

A broad spectrum of IT people, including those close to security
functions, appear to have little awareness of key security issues
impacting their organizations, a new survey shows.

The survey, which polled 430 members of the Oracle Application Users
Group (OAUG) conducted by Unisphere Research and sponsored by
Application Security Inc. included directors and managers of information
technology, developers and programmers, database and systems
administrators, systems architects and analysts and professionals from
the HR and financial functions.

About 22% of respondents claimed to be extensively involved in security
functions, 60% claimed a limited or supporting role, and the rest said
they were not involved with security at all. About 100 respondents
belonged to companies with more than 10,000 employees.

What the survey showed was a surprising lack of awareness of security
issues among the respondents. For instance, just 4% admitted to being
fully informed about security breaches within their organizations. About
80% of those who said their organizations had suffered a data breach in
the past year were unable to tell which IT components might have been
impacted by the breach.

There appeared to be even less knowledge or acknowledgement of the costs
associated with a data breach. Nine out of 10 of those who said their
organizations had been breached said they had no idea of the resulting
costs to their companies.


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.