DNV GL – Business Assurance: Companies worldwide put ...

These findings emerge from an international survey conducted by DNV GL – Business Assurance, a world leading certification body, and the ... DNVGL–BusinessAssurance:Companiesworldwideputtheirdefensesup Share tweet PublicadoelNov16,2015 OPINIÓN Lafábricadelfuturoessegura10diciembre202119:54GMT-4 Unmundophygitalmásalládelsectordelretail9diciembre202117:01GMT-4 Infraestructurascríticas:incrementarnivelesdeseguridad,monitoreoyrespuestaanteincidentes9diciembre202116:54GMT-4 Losdesafíosempresarialesdelcambioclimático9diciembre202116:18GMT-4 Resignificandolasconexioneshumanas8diciembre202116:57GMT-4 Despitethedifficultiesinvaluinginformationfromaneconomicpointofview,companiesaresignificantlyinvestingininformationsecurity. CompaniesallovertheworldareputtingInformationsecurityhighontheiragendas.Despitethedifficultiesinvaluinginformationfromaneconomicpointofview,companiesaresignificantlyinvestingininformationsecurity. ThesefindingsemergefromaninternationalsurveyconductedbyDNVGL–BusinessAssurance,aworldleadingcertificationbody,andtheresearchinstituteGFKEurisko,onmorethan1,100professionalsfrombusinessesindifferentsectorsinEurope,theAmericasandAsia. INFORMATIONSECURITYMANAGEMENT Respondentsagreethatinformationsecuritycannotbedisregarded,fromapersonal(76%),societal(81%)orbusiness(81%)pointofview. Companiesworldwidearenowactivelymanagingthisissue,buttherearevariouslevelsofsophisticationtotheapproaches.58%ofthecompanieshaveadoptedanadhocmanagementstrategy,whileonly27%setconcretegoals.Measuringaspectsrelatedtoinformationsecurity,suchasquantifyingthecostofdatabreachorofdataloss,isstilldifficult. FOCUSONPROTECTIONANDDEFENSE Companiesareputtingsignificanteffortsintoinformationsecurity.65%investedinspecificinitiativesinthelastthreeyears.73%ofthecompanieswithmorethan250employeesareinvesting. However,theyarenottakingasystematicmanagementapproach.Motivatedbytheneedtoprotectinformation,mostinitiativesfocusonessentialinfrastructurerequirements,suchasinvestinginappropriateequipment(41%),oronbaselineactions,likehiringappropriatepersonnel(40%)andapplyingcontrols(35%). 35%ofthecompaniessaytheyhaveseenreductionoflossduetobreachessincemakinginformationsecurityinvestments.23%ofthecompaniesalsoreportedthattheyseeadvantagessuchasimprovementofbrandreputationandcustomerrelationsduetotheirinvestment. INFORMATIONSECURITYINTEGRATEDINORGANIZATIONALCULTURE Mostcompaniesdonotconsiderbudgetstobeamainconstraintforprogressrelatedtoinformationsecurity.Justover30%mentiontooexpensivemaintenanceandimplementationasconstraints,andlackofstaffcompetence(23%)andmanagementawareness(19%)followthereafter. SuccessfulInformationSecurityManagementdoesnotonlydependonthecompetenceofthesecurityspecialist.Topmanagementplaysanimportantpart,andcompaniesneedtoworktointegrateinformationsecuritymanagementasapartoftheorganizationalculture. FUTUREOUTLOOK Whenaskedaboutthefuture,companiesstatethattheywillnotneglecttheircommitmenttoinformationsecurity,andwillmovetowardsadoptionofasystematicapproach.Respondentsexpecttoseeasignificantincreaseinstafftraininginitiativesintheircompany(+13%),andalsoanincreaseintheimplementationofinformationsecurityriskassessmentandmanagementmethodology(+8%).Theyalsoplantosetconcretegoals(+8%). LucaCrisciotti,CEOofDNVGL–BusinessAssurancecommented: “Theworldischangingfast.Newtechnologiesposebothnewchallengesandopportunitiesforcompaniesworldwide.Informationsecurityisattheheartofthisrevolution,aprerequisiteforsuccess. Hecontinued: “Companiesarealreadyputtingtheirdefensesup,butnotinastructuredway.Thenextstepistoshifttheirattitudefromdefenseontosystematicmanagement.Itisamatterofimplementinganorganizationalculturethatfostersinformationsecurity.Organizationalculturestartsfromthetop,somanagementmustbecomeambassadorsofthisculture.Informationsecurityneedstomoveonfrombeingtheresponsibilityofasingleindividualordepartmenttobecomingabusinessobjectivethattheentireorganizationismeasuredby.” *************************** METHODOLOGYANDSURVEYSAMPLE ThesurveywasconductedinJuly2015,onasampleof1,192professionalswhoworkatprominentcompaniesintheprimary,secondaryandtertiarysectorsacrossdifferentindustriesinEurope,TheAmericasandAsia. ThesampleconsistsofDNVGLcustomersandisnotstatisticallyrepresentativeofworldwidecompanies: 26%ofthefirmsinvolvedemploylessthan50people,36%from50to249and38%250ormore; 2%ofthecompaniesarefromtheprimarysector,54%fromthesecondarysectorand44%fromthetertiarysector. Thesampleincludes112companiesdefinedasleaders. TheclassificationofacompanyintheleaderscategoryisbasedonasetofrequisitesspecificallydefinedbyDNVGL:informationsecurityisrelevanttothecompany’sbusinessstrategy;onascalefrom1to5measuringmaturityinmanaginginformationsecurity,therespondentratestheircompanyasadvanced;thecompanyhasaninformationsecuritystrategy;thecompanysetsmeasurablegoalsoninformationsecurity;thecompanyhasinvestedininformationsecurityinitiativesinthelast3years;thecompanyhastakenactiontodealwithinformationsecurity,thecompanyisabletoratetheoverallcost/benefitratiooftheactionsundertaken;thecompanyisgoingtoinvestmoreorsameastodayinthenext3years.Moreinformationisavailableinthereport. ThequestionnairewasadministeredusingtheCAWI(ComputerAssistedWebInterviewing)methodology. Share Tweet Elenlaceparadescargadele-bookaparecerádentrodelmarco.Vernuestra Políticadeprivacidadparadescargadedocumentos ¿Desearecibirnuestronewsletter?(Nuncaleenviaremosspam) Dejavacíoestecamposiereshumano: Buscarentrenuestros42.960artículos Artículosrecientes Opinión Lafábricadelfuturoessegura 5G PublicanportaldeestadísticasdeespectromóvilparaAméricaLatina Energía ReinoUnidopresentaconceptodeunaviónimpulsadoporhidrógenolíquido Seguridad Elransomwarecausarápérdidasglobalesde20.000millonesdedólaresesteaño Opinión Unmundophygitalmásalládelsectordelretail Opinión Infraestructurascríticas:incrementarnivelesdeseguridad,monitoreoyrespuestaanteincidentes Contacto|DiarioTIesunapublicacióndeMPAPublishingInternationalLtd.