This article was submitted by an iTWire user via our FREE press release service.
If you or your PR company had chosen to sponsor this release for as little as $35AUD (+GST Australian Residents) the statistics show that it will be read by many more potential customers. This nag is also removed! Click here to see why iTWire's sponsored announcements are the most cost effective form of online advertising.
Telstra has revealed the addition of almost one million new mobile services in the six months to December 2011, but Sensis revenues plummeted 24 percent in 12 months.
Only 40 per cent of organisations whose data is breached tell clients.
More than half of companies fail to understand the impact of a security breach.
Over 50 per cent believe that security is responsibility of IT department.
Sydney – 25 September 2008 - Survey results launched today by IT and business services company, Logica, reveal that companies are failing to report data security breaches to clients; 60 per cent of those who have experienced a data breach, did not tell their clients and half failed to tell the police or authorities.
The study conducted in conjunction with the e-media group, surveyed 300 public and private sector organisations over the last two months. The findings revealed that more than half (57 per cent) of those surveyed, have “no idea” or understanding of the impact of a security breach on their business or organisation. A continued lack of engagement with the issue is evident, with just 16 per cent of firms having a “Value at Risk”[1] profile for information assets it owns/controls; with half of respondents believing that security is solely an IT departmental issue.
Tim Best, Director Enterprise Security Solutions at Logica, commented on the findings: “Data losses put customers at risk and can lead to large contracts being withdrawn. With some organisations failing to disclose security breaches, this complacent attitude not only increases the likelihood of financial and reputational consequences but also highlights the inadequate security policies and protocols that UK organisations have in place. It is time to take action – it should be mandatory for all organisations to report significant breaches of confidential personal information to the Information Commissioner or their regulatory body. Only through mandatory reporting will the scale of the problem be understood, which will lead to the correct solutions being applied.”
The study also demonstrated a lack of awareness of how to securely manage data and a lack of knowledge of how to prevent a security breach among many organisations. Only 30 per cent educate staff in IT security and information handling procedures on a regular basis, with less than a third employing a specific security incident response team. The survey also revealed that while 63 per cent of those surveyed hold personal data subject to EU data handling regulations, only a quarter comply with ISO27001/2, meaning that companies are not adhering to security procedures when storing personal data.
Tim Best adds: “Security should not be the sole responsibility of the IT department; it is a boardroom issue and the focus must be to protect the trust that clients have in an organisation. If you have experienced a security breach, it is essential to conduct a risk assessment to understand the issue and avoid a reoccurrence. All organisations must put in place mandatory services and policies which enable compliance with legal requirements and establish coherent, comprehensive and cost effective security controls and policies throughout the organisation”.
“It is clear from this survey that IT and security training remains a fundamental issue, with 70 per cent of those surveyed not training staff in IT security and information handling procedures. As employers now look to adopt flexible working initiatives, they must invest in a comprehensive security awareness policy to mitigate against potential information breaches.”
How to Make Business Discovery Work for Your Business
Business Discovery takes its cues from consumer apps. Like Google, it encourages us- ers to hunt for and explore data without worrying about or even noticing the underly- ing technology. Their entire experience is working within an intuitive interface to get real-time, self-service results with only minimal training. ...more
Try an easy-to-use set of web-enabled
tools for business-class productivity services. Office 365 provides
anywhere-access to email, important documents, contacts, and calendars
on almost any device.
