| The Sky Is Falling | Which Industries Care The Most? | Damage Control | Worth Its Mettle? | Security Priorities | Virus By Industry | Who Are The Security Chiefs? | Ad Hoc Security Reviews | Training Matters | Spread The Word |
Return to main story, "Global Security Survey."
| The Sky Is Falling How have you learned about your security breaches? |
||
| 1998 | 1999 | |
| Alerted by colleague | 47% | 48% |
| Analysis of server, firewall logs | 41% | 45% |
| Intrusion-detection system | 29% | 38% |
| Data or material damage | 41% | 37% |
| Alerted by customer, supplier | 14% | 15% |
| Note: Multiple responses allowed. DATA: INFORMATIONWEEK RESEARCH GLOBAL INFORMATION SECURITY SURVEY OF 2,700 SECURITY PROFESSIONALS | ||
| Damage Control What is the total value of loss, if any, that you suffered because of security breaches or espionage in the past 12 months? |
||
| 1998 | 1999 | |
| None | 28% | 24% |
| Up to $1,000 | 6% | 8% |
| $1,001 to $10,000 | 8% | 11% |
| $10,001 to $100,000 | 5% | 6% |
| $100,001 to $500,000 | 2% | 2% |
| $500,001 to $1,000,000 | 1% | <1% |
| $1,000,000 + | 1% | 1% |
| Unknown | 49% | 47% |
| DATA: INFORMATIONWEEK RESEARCH GLOBAL INFORMATION SECURITY SURVEY OF 2,700 SECURITY PROFESSIONALS | ||
| Security Priorities How important are each of these information security priorities? |
|
| Network security | 8.6 |
| Blocking unauthorized access | 8.5 |
| Top management commitment | 7.9 |
| Awareness of security procedures | 7.6 |
| Personnel resources (talent) | 7.3 |
| Distributed computing security | 7.0 |
| Integrating security systems | 7.0 |
| Funding, budget | 7.0 |
| Monitoring policy compliance | 6.8 |
| Product standards | 6.7 |
| Data owndership, classification | 6.7 |
| Web-browser issues | 6.2 |
| Encryption strategy | 6.1 |
| Note: Multiple responses allowed. Based on a 1 1/n 10
scale, where 1 is not
important and 10 is most important. DATA: INFORMATIONWEEK RESEARCH GLOBAL INFORMATION SECURITY SURVEY OF 2,700 SECURITY PROFESSIONALS | |
|
Who Are The Security Chiefs? Who sets information security policy and determines spending for information security in your organization? |
||
| Policy | Spending | |
| 52% | 47% | CIO, VP, Director of IS or IT |
| 35% | 24% | Manager of security, IT |
| 30% | 36% | President, CEO, managing director |
| 26% | 13% | Security management |
| 25% | 9% | Security administrators |
| 15% | 7% | Chief information security officer |
| 11% | 27% | CFO, finance director |
| 8% | 2% | Consultant |
| 5% | 3% | Other |
| Note: Multiple responses allowed. DATA: INFORMATIONWEEK RESEARCH GLOBAL INFORMATION SECURITY SURVEY OF 2,700 SECURITY PROFESSIONALS | ||
| Training Matters Which of these security-training programs did you introduce in the last year? |
|
| Formal training for administrators | 37% |
| Web-based secruity | 31% |
| Security awareness campaign | 31% |
| Training for handling sensitive data | 22% |
| Formal training for end users | 21% |
| Note: Multiple responses allowed. DATA: INFORMATIONWEEK RESEARCH GLOBAL INFORMATION SECURITY SURVEY OF 2,700 SECURITY PROFESSIONALS | |
Return to main story, "Global Security Survey."