Out of Touch With IT? Survey Shows Most American Execs Are

Jan 29 2014, 3:08pm CST | by

Many American executives are out of touch with their IT department, putting them at risk for security issues and data loss. When surveyed by PricewaterhouseCoopers, more than 9,300 high-ranking executives gave answers that were often vastly different from what officials found.

The survey was conducted in 2012 in a cooperative effort between the US Secret Service, the FBI, and Carnegie-Mellon’s software engineering institute. While executives were polled in 128 different countries, most of the respondents were located either in America or Europe. Overall, there were discrepencies in almost every category between what respondents believed and what was true. For instance, more than 42 percent of those questioned stated that they considered their organizations front-runners in the area of IT security. However, when compared to requirements set by the group coordinating the survey, only 8 percent qualified as true leaders.

These differences are notable because, as the survey revealed, corporations are putting less resources into IT security, with spending on training and in-house IT security expertise down. While the number of breach instances were down during the period this survey covered, the recent security breaches at major retailers show that attacks often happen when businesses least expect it.

Whether your business is a massive corporation or an SMB that outsources its IT security to a cloud services provider, it’s important that you remain aware of your business’s IT security operations at all times. If PricewaterhouseCoopers quizzed you this year about your company’s security procedures, how would your answers measure up?

IT security is an important issue to busineses today. There are several measures you can take to boost your awareness of your IT department’s activities, while also reducing your chance of a disastrous security breach.

Have Written Policies

Every organization should have a set of written security policies in place that extend beyond the IT department. Department heads across the organization should be on board with these policies, passing them down to every team member. These policies should reviewed on an annual basis to address any new issues that have arisen as technology within the organization has changed.

In cases where storage and data recovery processes are outsourced to a third party, written policies are more important, not less. Your contract with the vendor should cover your individual needs, but you should also have in-house policies regarding password security, restricted access to crucial systems, and personal devices on the network. You should also check with your cloud services provider on any third-party services they use.

Set Server-Level Restrictions

High-level executives have the power to request certain restrictrictions that can be set at the server level. When a business’s leadership works side by side with IT staff, policies can be put in place that force certain security measures. When users change passwords every 90 days, for instance, they can be required to choose a strong password, consisting of a combination of a certain number of letters, numbers, and special characters. For mobile device users, your server administrators can set up a policy that remotely wipes a smartphone or tablet that has been stolen or misplaced.

Since many security breaches occur at the hands of an organization’s own employees, fully trusting employees is a mistake. Internal security risks are often unintentional, caused by human error. When measures are put in place to protect an organization against these mistakes, a business can dramatically reduce its risks.

Understand Liability

Executives may be at an even greater risk than they realize. As the ultimate overseer of a business, CEOs and presidents are often the go-to people when something goes wrong. “I didn’t know” isn’t considered a valid defense, since business owners are expected to know the day-to-day activities of each of their departments.

When a HIPAA breach occurs, responsibility now extends to the Chief Executive, as well as any business associate contractors and subcontractors involved. Even in instances where government regulations aren’t at play, business leaders are often the parties who must answer questions when something goes wrong.

Of course, the ultimate danger to any business that has a data breach is that business’s survival. According to Symantec, the avereage cost of a data breach is $7.2 million, averaging out to $214 per compromised record. After a data breach, a business often experiences a loss of trust from its valued customers, with many of those customers potentially never returning. A company the size of Target may be able to recover due to a long, positive track record, but a smaller business with a shorter history may have to shut its doors completely.

Have a Disaster Recovery Policy

In addition to protecting against data breaches, businesses should also consider the impact of a disaster. Whether a company faces threats from hurricanes, tornadoes, earthquakes, floods, fires, or a combination of any of the above, no building is 100 percent safe. Servers should be backed up regularly with data stored off site in a secure, disaster-protected facility. The disaster recovery plan should outline a contingency plan, as well, in the event a business’s office is uninhabitable for several weeks. Will employees be able to work from home? Is there an alternate location where temporary operations can be set up?/>/>

Like other written IT policies, the disaster recovery plan should be revisited on an annual basis. Some businesses bring in an outside consultant to help with creating and maintaining the plan, bringing years of expertise as well as an objective party into the process. For businesses interested in tackling the task on their own, the Small Business Administration provides a step-by-step guide that can help.

While hiring the right IT security professionals is vital, simply putting experts in place and stepping away isn’t sufficient for today’s volatile technology environment. Executives must work closely with technology experts to ensure the best interests of the business are being represented. When both sides work together to craft written policies, these policies not only ensure they’re working together, but they’ll also provide a document that can be passed on to employees, contractors, and investors.

Source: Forbes Business

 
 

Don't miss ...

 

<a href="/latest_stories/all/all/30" rel="author">Forbes</a>
Forbes is among the most trusted resources for the world's business and investment leaders, providing them the uncompromising commentary, concise analysis, relevant tools and real-time reporting they need to succeed at work, profit from investing and have fun with the rewards of winning.

 

blog comments powered by Disqus

Latest stories

Global infection outbreaks rising since 1980: Study
Washington, Oct 29 (IANS) The number of outbreaks of infectious diseases and the number of unique illnesses causing them appear to be increasing around the globe, says a study co-authored by an Indian-American professor.
 
 
UN General Assembly again urges US to end Cuba embargo
United Nations, Oct 29 (IANS/EFE) The UN General Assembly voted overwhelmingly to demand that the US end its 52-year-old economic embargo against Cuba.
 
 
Vitamin D can curb asthma attacks
London, Oct 29 (IANS) Boosting Vitamin D levels in deficient asthmatics could help manage asthma flare-ups, Israeli researchers have found.
 
 
High powered MRI scans identify language centres in brain
Vienna, Oct 29 (IANS) A study from the Medical University of Vienna found how 7-Tesla ultra high-field magnetic resonance imaging (MRI) could be used to clearly show the brain areas responsible for speech processing and production.
 
 
 

Latest from the Network

Chloe Grace Moretz: I'm a geek
Chloe Grace Moretz is a ''geek'' when she's at home. The 17-year-old actress - who can be seen playing a prostitute alongside Denzel Washington in new action thriller film 'The Equalizer' - insists she lives a pretty...
Read more on Celebrity Balla
 
High powered MRI scans identify language centres in brain
Vienna, Oct 29 (IANS) A study from the Medical University of Vienna found how 7-Tesla ultra high-field magnetic resonance imaging (MRI) could be used to clearly show the brain areas responsible for speech processing...
Read more on Business Balla
 
Timothy Spall sees 'certain parallels' with William Turner
Timothy Spall sees ''certain parallels'' between himself and William Turner. Spall, 57, plays the influential painter in his new film 'Mr. Turner', for which he won the Best Actor award at the Cannes Film Festival, and...
Read more on Movie Balla
 
Trinidad cricket board condemns Windies players pull out
Port-of-Spain, Oct 29 (IANS/CMC) The Trinidad and Tobago Cricket Board (TTCB) has condemned the recent decision by the West Indies cricketers to abort their tour of India. The condemnation came in the form of a motion...
Read more on Sport Balla
 
Binge drinking hampers memory in long run
Washington, Oct 29 (IANS) High doses of alcohol during adolescence may continue to affect the brain even after drinking stops, leading to structural changes in the brain and memory deficits, says a significant study....
Read more on Celebrity Balla
 
EU: inspiring innovation through 3D-printed robot
Brussels, Oct 29 (IANS) The European Union (EU) said that it has a 3D-printed robot ready to be introduced in schools to cultivate the creativity of students studying mechanics, computer sciences, electronics and 3D...
Read more on Politics Balla
 
'Confident West Indies will appear in 2015 World Cup'
Sydney, Oct 29 (IANS/CMC) John Harden, 2015 Cricket World Cup chief executive, has said he is confident that the former champions West Indies will appear at next year's event in Australia and New Zealand. Harden...
Read more on Sport Balla
 
NASA cargo spacecraft explodes minutes after launch
Washington, Oct 29 (IANS) In a shocking incident, an unmanned commercial rocket carrying crucial scientific cargo for the International Space Station (ISS) exploded moments after lift-off Tuesday evening. Orbital...
Read more on Politics Balla
 
Sleep disturbances linked to higher Alzheimer's risk in men
London, Oct 29 (IANS) Elderly men with self-reported sleep disturbances run a higher risk of developing Alzheimer's disease than men without self-reported sleep disturbances, says a study. "We demonstrate that men...
Read more on Business Balla
 
Champ Bailey Retires From the NFL
Former Denver Broncos cornerback Champ Bailey retired from the NFL on Oct. 28.Bailey ends his career as one of the top shutdown cornerbacks in league history, per Ben Swanson of the Broncos' official website:"Longtime...
Read more on Sport Balla