Jo Stewart-Rattray, a director of ISACA and director of information security at RSM Bird Cameron, said that there was a clear need for a cross functional approach to information security. It was no longer the province purely of the IT department she said, but needed input from departments such as marketing and human relations, especially as more consumer devices and social media percolated into corporate entities.
She said organisations needed to protect themselves by developing and implementing clear policies that governed information access and use, to guard against damaging data leakage. In an era of big data this was particularly important, according to Ms Stewart-Rattray, adding that data leakage was already “very commonplace.”
She said that ownership of the problem was no longer the “sole bailiwick of IT. We need cross functional information security policies,” she said.
She urged organisations to get to grips with ISACA’s recently released COBIT 5 for Information Security, intended as a practical framework to help improve information security policies and processes.
Similarly where 57 per cent of global organisations reported they were as a result suffering project over-runs, that figure was a much more manageable 41 per cent in this region.
The outlook locally is also more positive, with 54 per cent of regional organisations expecting an increase in their IT investment over the next year, compared to 49 per cent globally, according to the survey which was conducted internationally in March.