When times were good, malware attacks were pretty much the cost of doing business. They happened from time to time, but nobody ever really considered their real impact on the business.
Now that times are tough and the number of zero-day malware attacks have increased, the operational costs of security are becoming a much bigger factor.
That’s the primary finding of a survey of 564 IT security managers conducted by The Ponemon Institute on behalf of Lumension, which finds that security issues are becoming a bigger drain on limited IT resources.
The survey also finds that far too many IT organizations don’t have much in the way of control over security policies. Many report either not having any or simply lack the wherewithal to enforce them.
According to Ed Brice, senior vice president for worldwide marketing at Lumension, the study not only highlights the need for more effective policy enforcement, but it also shows that anti-malware software isn’t enough to make the overall IT environment secure. And without additional security measures, IT organizations are incurring significant additional operating expense cleaning up after malware infects their systems.
A comprehensive approach to security should not only include anti-malware software; IT organizations should be deploying application controls, policy-based management systems based on whitelisting techniques and data loss prevention (DLP) systems.
Unfortunately, the majority of the IT organizations surveyed by Lumension have yet to deploy any of these security technologies, even as their operational security costs continue to rise. Worse yet, with the rise of mobile computing in the enterprise, Brice contends that the security will become even more complicated to manage.
Of course, in these tough times, it’s sometimes hard to make a case for additional security investments. But when you start to factor in how much time and expense is being wasted in the aftermath of a malware infestation, suddenly the cost of security doesn’t look nearly as prohibitive.
References:
http://www.ponemon.org/index.php
http://www.lumension.com/
Monday, December 13, 2010
The Cost of Insecurity | CTO Edge
See this Amp at http://bit.ly/fwXXpX
Don't be afraid to try—you never know what you are capable of until you do. ~ Rona Barrett http://bit.ly/grKr72
"A good leader inspires people to have confidence in their leader. A great leader inspires people to have confidence in themselves." ~Anonymous http://bit.ly/gvDbwF
A good plan violently executed now is better than a perfect plan executed next week. ~George S. Patton http://bit.ly/h7d5mc
Subscribe to:
Posts (Atom)