[ISN] IT Professionals Lack Confidence in the Security of Their Systems

[InfoSec News <alerts@xxxxxxxxxxxxxxx>]

http://www.cio.com/article/702471/IT_Professionals_Lack_Confidence_in_the_Security_of_Their_Systems?taxonomyId=3089

By Meridith Levinson
CIO.com
March 20, 2012

Would you bet money on the security of your company's systems? If your 
answer is no, you're far from alone. Most IT professionals lack so much 
confidence in the security of their organizations' networks that they 
wouldn't bet a dime on it, according to the results of a recent survey.

The survey data speaks to both the inadequacies of corporate security 
measures and to the persistence of ever-growing security threats.

When asked to bet money that their networks would not be compromised in 
the next 12 months, 57 percent of IT professionals polled on behalf of 
PhoneFactor, a provider of multi-factor authentication solutions, would 
not take the bet. Granted, the potential wagers PhoneFactor presented 
were high: The company asked respondents to bet one of five amounts on 
the security of their networks: $0; $1,000; $5,000; $50,000 or $1 
million.

Even if PhoneFactor had offered a few wagers under $1,000, respondents 
probably would have remained unlikely to take the bet, judging by their 
answers to other survey questions. For example, 84 percent of 
respondents think an expert hacker could infiltrate their corporate 
network. Of that 84 percent, nearly a quarter (23 percent) say an expert 
hacker could definitely gain access to their network.

If their networks were to get breached, only 25 percent of respondents 
are very confident that they would know they had been penetrated.

[...]


______________________________________________________________________________
CISSP and CEH training with Expanding Security is the fastest, easiest way
to grock the relevant data you need now.   A free class invite is in every
PainPill.  Sign up for the free weekly PainPill .  It's that easy.
http://www.expandingsecurity.com/PainPill