Recently, Protiviti published their 2014 IT and Security Privacy survey, entitled “Bridging the Data Security Chasm”.
Comparing data to the role of water in a hydroelectric plant the report says:
“Data powers an organisation, pumping fuel – through information, knowledge and insights – to virtually every company function. It therefore must be managed – and managed well”.
Confirming the findings of other surveys over the past year, the Protiviti survey indicates five key findings, namely:
board engagement is a key differentiator in the strength of IT security profiles
there remains a surprising lack of key core information security policies – one in three companies do not have a written information security policy and one in four do not have acceptable use or record retention/destruction policies
organisations lack high confidence in their ability to prevent a cyber-attack or data breach
not all data is equal – a percentage of organisations that retain all data and records without a defined destruction date has more than doubled – not necessarily a positive development, and
many are still unprepared for a crisis – there is a significant year over year jump in the number of organisations without a formal and documented crisis response plan.
We ourselves have seen a dramatic increase in the number of businesses consulting us on data and information “incidents” and in so many cases, the absence of a rapid response task force and policy tends to exacerbate the crisis.
This article was written by Robert Bond.
For more information contact Robert on +44 (0)20 7427 6660 or email@example.com