February 6, 2007 1:34 PM PST

Companies told to step up on security

Related Stories

Unlocking security at RSA 2007

February 12, 2007

Symantec to change consumer product launches

July 28, 2005
SAN FRANCISCO--In a world where customers, suppliers and partners all tap into corporate networks, businesses must provide a secure environment for all of them, Symantec's CEO urged Tuesday.

John Thompson said that companies need to take responsibility for maintaining customer confidence, especially as people and businesses become increasingly connected via devices such as cell phones and handheld computers.

John Thompson

"What used to be clear lines separating enterprises and consumers have now become blurred, as networks are extended to not only suppliers and partners, but also to customers," Thompson said during a keynote speech at the RSA Conference 2007 here.

He acknowledged that this approach has not been common, despite increases in malicious software and other security breaches. "Accepting responsibility for the security of a device accessing your network, when it's not owned or managed by you, is a radically new concept in our world," Thompson said.

But he urged vendors to take that step in enabling companies to deliver a secure experience to end users, which include customers, partners and suppliers.

"Those that embrace this approach will not only reduce their risks, but, I believe, they will also create a competitive advantage for their companies," he said.

special coverage
Unlocking security at RSA 2007
All the latest from the security confab.

Confidence in the connected world will only come about if information, the infrastructure and interactions are secure and protected, Thompson predicted.

As a result, the role of a business' security officer needs to evolve into one that focuses on IT risk management, he advised. This new role would call for identifying, measuring and developing strategies to weigh IT risks and returns.

The IT risk manager, for example, would examine stumbling blocks to the availability of data, regulatory compliance and overall business performance, Thompson said.

The Symantec CEO outlined technologies and challenges companies may need to consider to bolster their IT risk management and reduce customers' concerns over security issues.

He called on enterprises to introduce identity management systems and extend them to customers, partners and vendors that they do business with. "There is no doubt in my mind that managing user identities is the most pressing challenge facing the industry today," Thompson said.

An approach that focuses on the user, rather than on the technology, is what is called for, he added. "After all, the goal is to protect the user--regardless of the device they use, online transaction they undertake, or threat they may face," Thompson said.

See more CNET content tagged:
RSA Security Inc., John Thompson, supplier, Symantec Corp., information technology

1 comment

Join the conversation!
Add your comment
People in glass houses shouldn't cast stones
Symantec Antivirus Enterprise (managed) had a gaping security hole in it. Their Backup software had\has gaping security holes in it.

Before you go telling other how to secure their environments maybe you should secure your own products.
Posted by fred dunn (793 comments )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.