Spending doesn't guarantee data security

InformationWeek recently polled 1,100 IT and business professionals about their plans for security and found that they believe their data is safer, even with budgets holding steady or increasing. Sixty-six percent of respondents said their vulnerability to breaches and malicious code attacks was either the same as last year, or even worse.

If money is not the issue, what gives? One answer is the need to focus risk management processes, carefully evaluating threats and placing the resources where the needs are the greatest. The survey found only about half of the respondents actually had risk management plans, and only 22 percent paid attention to such issues as code security. The survey also found companies behind in implementing encryption to protect customer and employee data.

All the while, viruses, phishing attacks, and worms continue to cause major headaches. What's the problem? Complexity was cited as the biggest security challenge by 62 percent of respondents. "More data is ending up on the network. More agents are running on company computers, and employees expect some control over the PCs they use,'' the article stated.

For more:
- check out this InformationWeek.com article