For those information security and risk management team leaders, it would be good to explore the key findings and bring back to your team members the results from a recent study – 2012 Global State of Information Security Survey© — organized by PwC, CIO Magazine and CSO Magazine.
The study covered results from 138 countries with inputs from more than 9,600 responses originating from CEOs, CFOs, CIOs, CISOs, CSOs, VPs, and directors of IT and security.
A quick summary of key findings from the report are:
1. More than seven out of ten (72%) of respondents say they feel confident in the effectiveness of their organization’s information security capabilities. This level of assurance indicates that information security is viewed as a critical business function rather than a “patchwork of technical guesses” or merely a line item in the CIO’s budget. In other words, survey respondents appear to believe that the information security function is doing its job quite well.
2. While organizations have invested in capabilities for prevention, detection, and Web-related security initiatives, this year’s survey reveals a troubling degradation in core security-related capabilities.
3. When asked to identify the highest hurdle to improving information security, responses vary by role. CEOs point first to a lack of capital and then themselves – and lastly to the CISO. CFOs cite the CEO. Interestingly, CIOs and CISOs report a lack of vision and an effective security strategy – and rank themselves at the bottom of the list.
4. Today 76% of Asia respondents say their organization has implemented an overall security strategy, insights into security incidents have soared, and the importance of the security function is more widely acknowledged than in any other region.
Click here to view the PwC website’s website where you are offered a free download of this global information security status update report.
If applicable, please pass this information along also to those network security, HR and cybersecurity risk managers — as well as those PS-Prep strategy planning teams — in your organization.