Strategy should include a security assessment

July 2003 News

Many businesses respond to increased information security threats by shoring up their perimeter defences. Implementing tools that serve a very specific purpose is part of the solution, but smart organisations are waking up to the need to implement a strategy that also includes security assessment.

In fact, says Anthony Southgate, general manager: Security Solutions at Dimension Data, one of the biggest issues surrounding information security investment is the fact that many senior managers simply do not recognise or understand the threat to their business. It is difficult to quantify the actual threat or calculate the ROI of any project.

"Before approving any budget plans, management therefore needs to understand the real impact of a breach on their security systems. It is also critical to be able to discern the fact from the fiction in terms of security mythology," he adds. According to Southgate, companies need to establish what degree of risk is acceptable.

55% of organisations surveyed already use security assessments as part of their ongoing strategy; 60% of the remainder intend to do so in the near future.

However, the costs of a security breach cannot always be easily quantified. Damage to reputation and brand can often be as detrimental as the physical harm done to an organisation's systems. It is vital that CEOs and senior management understand just what it means for their organisation if breaches occur. It is therefore important that organisations use regular benchmarks to help them understand their risk exposure and how this compares to their competitors.

A recently commissioned Di-Data survey revealed that while many were still focusing on products to provide protection, a significant number of organisations indicated that they wanted to move toward investing in security consultation and managed security. Of those organisations that confirmed further investment, 89% intend to allocate budget to security consultation and 62% to a managed security strategy.

"This clearly indicates a move away from creating a defence against every eventuality, toward adopting a more pro-active strategy on what to do should an attack occur," says Southgate.

"By focusing less on eliminating all risks, and more on developing a strategy for how to deal with attack, organisations will be able to benefit from a pragmatic approach to security that does not negatively impact their ability to innovate."

For more information contact Bronwyn Goeller, Dimension Data, 011 575 0000.

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

New hires at iPulse
Issue 7 2020, iPulse Systems , News
iPulse has welcomed two new employees into its ranks. Shai Weil has been appointed as operations director, while Corneli Botha is the new customer sales liaison.

HID Global acquires Access-IS
Issue 7 2020, HID Global , News
HID Global acquires provider of miniaturised reader devices that combine key technologies for mission-critical markets.

Securing digital transformation
Issue 7 2020 , News
Schneider Electric partners with Fortinet to strengthen ability to secure operations across the business lifecycle and unlock the advantages of a secure IIoT.

Suprema integrates with Paxton’s Net2 access control
Issue 7 2020, Suprema , News
Suprema has announced it has integrated its devices with Paxton’s access control system, Net2.

Free cybersecurity courses
Issue 7 2020 , News
Check Point Software partners with Harvard and MIT-founded edX to deliver free online courses to help close the cybersecurity skills gap.

Fidelity partners with Auto & General Insurance
Issue 7 2020, Fidelity Security Group , News
Fidelity Services Group in partnership with Auto & General Insurance has launched Fidelity InSure, a comprehensive vehicle, home, and building insurance offering.

More apps for open camera OS
Issue 7 2020 , News
The App Challenge will result in 21 new apps running on the Security & Safety Things’ camera OS, based on the Android Open Source Project.

Milestone Systems announces Thomas Jensen as new CEO
Issue 7 2020, Milestone Systems , News
Milestone Systems announced that its board of directors has appointed Thomas Jensen as chief executive officer. Jensen will assume the role on October 1, 2020.

Suprema announces its first virtual event
Issue 7 2020, Suprema , News
Suprema will be hosting its first virtual event, Suprema Connect 2020, which is scheduled to take place over one month from September 15.

From the editor's desk: Waiting for PoPI
Issue 7 2020, Technews Publishing , News
A while ago we heard of yet another cyber breach, this time from Experian.