67% OF SECURITY EXECUTIVES DO NOT HAVE ROBUST CONTROLS IN PLACE TO PREVENT DATA LEAKAGE Thursday 6 December 2007 PDF Print According to real-time survey conducted at the Qualys CSO Interchange Event in London CSOs are most concerned about brand reputation and risk management London, 6 December 2007 – Brand reputation, risk management and preventing data loss surfaced clearly as the burning concerns of senior security professionals participating in the London meeting of the CSO Interchange, a high level forum geared to discussing hot topics of the day. 60% profess to having only “some idea” as to where their customer data is stored and “limited controls” over it. 72% see the impact of payment card loss on brand reputation as their biggest concern. Speaking at the event, cross-bench peer, Lord Erroll, a member of the House of Lords Science and Technology Committee, described the recent HMRC data breach as a “godsend”…”with luck the missing CDs have ended up in a landfill site but this fiasco will force the government to start taking security seriously and the powers of the Information Commissioner’s Office will be strengthened.” Concerns about data loss were clearly a running theme throughout the debate. Although 32% felt they did know where their customer data was being kept and had controls in place. Alarmingly, 9% of those present had not even yet considered data loss as a specific issue. Philippe Courtot, Chairman and CEO of Qualys and Co-founder of the CSO Interchange added. “More than 70% of the security professionals attending CSO Interchange indicated that securing their networks and therefore the confidentiality of their electronically stored data is now harder than ever. The HMRC breach and other recent media stories are forcing this in to the open as a public issue. We must take these matters seriously and rethink the way security is provided online. Four years ago The Jericho Forum was the first non-government organisation to sound the alarm by suggesting practical and effective solutions for high industry. As yet their call to action has gone unanswered. Now is the time for industry and government alike to seize the initiative.” Managing risk was clearly seen as being the biggest driver to security strategy and executives know they need to improve at this. Half of those surveyed felt they could do better at articulating the impact of risks within their organisation as well as the impact of mitigating them financially. There was clear recognition too for the risks posed by insiders within their organisation – with 75% citing this as greater than the risks from outsiders. These and other interesting findings were revealed in an interactive survey of 35 top ranking professionals from major blue chip organisations taking place at the event organised by Qualys. The survey consisted of 26 key questions relating to business issues of importance to security executives. Other key findings were: • 50% see Software-as-a-service (SaaS) as displacing enterprise software • 64% see the job of securing their networking environment as harder than one year ago – with the majority seeing time, personnel and budget as the biggest obstacles to doing their job. • 62% have no real interest yet in environmental issues Other participating keynote speakers in addition to Lord Erroll, were Mark Hughes, Director, Group Security for BT, and Paul Wood, Group Business Protection Director for Aviva. About CSO Interchange Howard Schmidt, former White House advisor, and Philippe Courtot, Qualys Chairman and CEO, founded the CSO Interchange in 2004 to provide a forum for Chief Security Officers at corporations, government agencies and other organisations to exchange ideas, discuss challenges and learn from the real-world experiences of their peers. The event provides an independent forum for leading CSOs to discuss a wide variety of security issues that affect their organisations and reveal their top-of-mind concerns through interactive surveys. The concept started in the US in 2004 and there have been four successful events there including one this year at RSA in San Francisco. The recent CSO Interchange in London was sponsored by Qualys with the participation of KPMG. More information about CSO Interchange can be found at http://www.csointerchange.org/events/london-11-2007/. Jane Folwell Folwell PR Tel: (44) 1344 845132 Mob tel: (44) 7950 033370 Email: firstname.lastname@example.org This press release was distributed by ResponseSource Press Release Wire on behalf of Jane Folwell in the following categories: Business & Finance, Computing & Telecoms, for more information visit http://pressreleasewire.responsesource.com/about.