Printer Friendly
The Free Library
14,787,278 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Survey: companies are poorly prepared for security.


As privacy issues become more closely regulated on both a state and a federal level, a new industry survey shows insurance executives believe more needs to be done to meet the priorities of the new business climate.

According to according to
prep.
1. As stated or indicated by; on the authority of: according to historians.

2. In keeping with: according to instructions.

3.  a survey by Ernst & Young, there still seems to be a fair number of organizations that have less-than-adequate security processes in place, William Barrett William Barrett is the name of:
  • William Barrett (philosopher) (1913-1992), American philosopher and critic
  • William A. Barrett (1896-1976), American politician and a member of the Democratic Party
  • William E. Barrett (born 1929), former U.S.
, leader of Ernst & Young's technology and security risk-services practice in the firm's New York New York, state, United States
New York, Middle Atlantic state of the United States. It is bordered by Vermont, Massachusetts, Connecticut, and the Atlantic Ocean (E), New Jersey and Pennsylvania (S), Lakes Erie and Ontario and the Canadian province of  financial-services office, said.

In the survey, 31% of companies rated themselves as less than adequate in having effective ways of evaluating vulnerabilities in their systems, Barrett said In addition, 28% of the organizations were less than adequate in being able to detect if the systems were under attack, he said.

Only 64% of the organizations feel they are compliant with security-driven regulations, which means about 36% are compliant or partially compliant with regulations, Barrett said Most companies, based on their own self-assessment, don't feel they are in conformity with such regulations as the Health Insurance Portability and Accountability Act The Health Insurance Portability and Accountability Act (HIPAA) was enacted by the U.S. Congress in 1996.

According to the Centers for Medicare and Medicaid Services (CMS) website, Title I of HIPAA protects health insurance coverage for workers and their families when  of 1996 and the Sarbanes-Oxley Act See SOX. .

Companies need a fresh approach in looking at information security, Barrett said Budgetary restrictions were cited more often than any other reason as to why security systems weren't up to par, he said Budgetary constraints always will exist, so companies need to find a way to make the system work within those budget limits, he said. There's a need for organizations to prioritize pri·or·i·tize  
v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem

v.tr.
To arrange or deal with in order of importance.

v.intr.  the risk and take measures that address the most significant risks, he said.

The survey highlighted a significant difference between types of financial-services industry spending on information security, with 79% of banks and insurance companies surveyed citing technology spending as the largest component of their information-security budgets, but only 18% stating the majority of their budget was spent on employee awareness and training.

More security issues relate to the fact that networks are more open, with connectivity to the outside, with third-party business partners, and with Internet accessibility and increased vulnerability through more extensive networking, Barrett said.

"If you look at security in the past few years, the Years, The

the seven decades of Eleanor Pargiter’s life. [Br. Lit.: Benét, 1109]

See : Time  No 1 concern was concern about access within the organization, from employees or contractors given access," Barrett said "Outside hacking See hack and hacker.  access was limited Now there is certainly more likelihood that a hacker A person who writes programs in assembly language or in system-level languages, such as C. The term often refers to any programmer, but its true meaning is someone with a strong technical background who is "hacking away" at the bits and bytes.  incident will come from outside, and the hackers pose a threat to the organization for access to information of denial-of-service issues It is no longer just an internal problem."

Organizations need to make sure they have a program for identifying and addressing vulnerabilities, Barrett said With the number of hacker and virus attacks, being able to identify vulnerabilities and addressing them ahead of time can limit their damage, he said Identifying the gaps in information security and developing programs and processes to address them will vary from organization to organization, but it needs to be done, he said.

A number of organizations provide services for attack-penetration evaluations, so the companies can prepare and correct problems, Barrett said.
COPYRIGHT 2004 A.M. Best Company, Inc.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2004, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:Technology
Comment:Survey: companies are poorly prepared for security.(Technology)
Author:Chordas, Lori
Publication:Best's Review
Geographic Code:1USA
Date:Jan 1, 2004
Words:502
Previous Article:Travelers Property Casualty Corp.(Technology Notes)(Brief Article)
Next Article:Chubb CEO Finnegan elected chairman of the board.(Companies)(Brief Article)
Topics:



Related Articles
Many Life Insurance CEOs Are Uneasy About the Future.
Less expert testimony admitted since Daubert, study says.
QUAKE LOANS MAY REVIVE PACOIMA CORRIDOR.(NEWS)
SHOW STUDENTS WHY THEY'RE LEARNING SCHOOL-TO-CAREER TEACHING OFFERS CONTEXT FOR THOSE 'BORING' SUBJECTS.(Editorial)(Editorial)
Survey reveals disaster recovery expectations and reality.(Up front: news, trends & analysis)
Optimism increasing about Lower Manhattan rebuilding.
IncreasingSpam concern for UK businesses.(Security)
Cyber security gets short shrift, say federal info tech managers.
Social factors associated with AIDS and SARS.(DISPATCHES)
Figuratively speaking.(Brief article)

Terms of use | Copyright © 2010 Farlex, Inc. | Feedback | For webmasters | Submit articles