IT Risk Management
“As IT becomes the cornerstone of our connections with customers, suppliers, partners, and business information, identifying and managing IT Risk becomes a core business capability.”
Greg Hughes, Executive VP, Symantec Corp.
Symantec have just released Volume One of their IT Risk Management Report which analyses the results from a year-long study that examines IT risk, based on interviews with more than 500 IT executives and professionals from around the world.
The Register reported on it yesterday and pointed out that one in five European businesses expect to have to cope with ‘major data loss’ of some sort annually over the next five years compared to 10 per cent of their US counterparts.
Why am I posting about this?
Well, whether you print the report off and use as some bedtime reading or as a new cup holder, the information inside the document helps go some way towards proving some of the points we’ve been telling our clients, including:
- Misalignment of IT risk perception within the IT organisation between IT executives (or partners) and their staff (or clients) is likely to lead to wasted resources as a result of over- or under-investment in controls.
- Organisations are more effective in implementing technology controls than process controls - shortcomings are in areas that can have a negative impact in overall IT Risk Management - education, education, education!!!!
Review the report by downloading it here. The overview of the report can be found here.
Get an individualised peer benchmark report that compares your organisation to others in your industry by completing their online survey or download a PDF version to return by fax. (all Symantec links)
If you can take one or two points as evidence to use when you are talking to prospects or re-enforcing to existing clients (aka marketing) then the report was worth the read!