Welcome Guest. | Log In| Register | Membership Benefits

1996 Ernst & Young and InformationWeek Security Survey

Looking for more information on Ernst & Young and InformationWeek's 4th annual security survey? You'll find additional data here that wasn't highlighted in our story " The Security Facade ."

1 To whom does your most-senior information-security person report?
2 Which of the following security measures does your organization employ on a regular basis?
3 Please rate the importance of these network issues.
4 Does your organization utilize the Internet for exchange of important business correspondence or information externally?
5 Do you monitor Internet activities associated with your organization through internal or external services? 


To whom does your most-senior information security person report?






Head of information systems

37%





Department head within IS

28%





Non-IS exec

30%





Internal audit

2%





Other

3%





Return to list of questions





Which of the following security measures does your organization employ on a regular basis?






File enc
ryption

26%






PC access-control software

55%





Mini/mainframe access-control software

61%





Telecommunication encryption

17%





Dial-back or secure modems

38%






Terminal key locks or lock words

29%





PC hardware security devices

25%





Security-evaluation software

20%





Business continuity planning software

16%






Virus-detection software

91%






Message-authentication codes

12%





Firewalls to protect from external access

52%





One-time (token-based) passwords

26%





Signature verification

7%





Single sign-on software

23%





Biometrics to authenticate users

1%





Public-key cryptography

6%





Kerberos

4%





Redundant communications or power

34%





Return to list of questions





Please rate the importance of these network issues:







 

Not


Important

Somewhat


Important

Important

Extremely 


Important





Tampering or interference with intended operation of the network 

4%

16%

38%

42%





Loss of message integrity

4%

18%

47%

31%





Loss of message confidentiality 

4%

14%

47%

35%





Inability to identify network users

3%

15%

44%

38%





Unavailability of network

1%

7%

29%

63%





Unauthorized access via external remote dial-in methods

4%

12%

29%

55%





Return to list of questions





Does your organization utilize the Internet for exchange of important business correspondence or information externally?






Yes

34%





No

39%





Not currently

26%





Return to list of questions





Do you monitor Internet activities associated with your organization through internal or external services?






Internal

25%





External

6%





Both

25%





None

44%





Return to list of questions





 Comments on this story?


http://www.informationweek.com