CEOs and their senior executives don't see eye to eye on key security issues, according to a new survey.
Many CEOs don't consider their own companies vulnerable to security attacks and are confident in their ability to combat those attacks, says a survey released Wednesday. However, those findings contrast with the opinions of senior executives who report to the CEO. They see their companies as more vulnerable and are not confident they can stop data theft. The survey was sponsored by security company Ounce Labs and conducted by security researcher Ponemon Institute.
The survey sought to determine how aware CEOs and other senior executives are of their own data projection efforts--how effective they are, how they justify the cost of security, and whether they support the goals of the organization.
The survey found that 82 percent of senior executives said their organization has experienced a data breach, with 94 percent saying they've been hit in the last six months. About 53 percent say they're attacked on a daily or even hourly basis.
Only 58 percent of the senior execs are confident in their company's ability to identify and respond to breaches that result in the theft of information. And just 32 percent think their company is rarely attacked.
Among CEOs, 93 percent are confident in their organization's ability to identify and thwart security breaches. And 48 percent said they believe their organizations are rarely attacked.
(Credit:
Ounce Labs)
The responsibility for securing a company's data was also a question mark. Among CEOs, 53 percent felt the chief information officer is accountable for data protection, while only 25 percent of other senior executives felt the same way. And whoever is responsible, that person's job is seen as safe. Around 85 percent of executives questioned believe a failure to stop a security attack under their watch would not jeopardize their job.
(Credit:
Ounce Labs)
To gather the data, Ponemon Institute questioned 30 CEOs and 183 other top-level executives who report to CEOs, including chief operating officers, division presidents, and chief information officers, over a six-month period ending in June.
This should come as no surprise to anyone, but people in the U.S. are worried that as the economy worsens, the chances for identity fraud, particularly with regard to credit card data theft, will increase.
Nearly 75 percent of Americans believe that the global financial crisis increases their risk of identity and related fraud, according to the Unisys Security Index due to be released on Monday.
More than two-thirds surveyed said they are extremely or very concerned about other people obtaining and using their credit and debit card data, with 90 percent at least somewhat concerned.
Credit and debit card fraud is the top security concern for people, with 68 percent saying they are extremely or very concerned. And 66 percent said they are seriously concerned about unauthorized access to or misuse of personal information.
More than 40 percent of respondents said they are extremely or very concerned about security related to viruses and unsolicited e-mail.
Overall, people are more worried about their financial security and less worried about national security than in previous surveys, according to the survey.
The survey of more than 1,000 respondents in the U.S. was conducted from February 20-22.
(Credit:
Unisys)
Internet security isn't a top concern among most average people, says a report released Tuesday by Unisys. What concerns most people is National Security, followed by financial worries.
"Whether it is the headline news that people listen to every day, or whatever is driving it, it's gone up 26 to 32 percent on this survey," said Tim Kelleher, vice president, enterprise security, Unisys. He said the results were surprising since the presidential election came down to where the candidates stood on the economy not the war.
Unisys focused its survey on four broad areas: national security, financial safety, Internet safety, and personal safety. Results in each category were combined and the composite score rated on a scale from 0 (not concerned) to 300 points (extremely concerned). At 145 points, the United States fell somewhere in the middle. An international version of this survey out in December will compare the U.S. with other nations.
"We're trying to do something that no one else has done," Kelleher said. "We're looking at security in a much broader sense then just cybersecurity, a personal security perspective, trying to do a broad brush of security from the perspective of an average citizen to get a sense of where the public is out there."
(Credit:
Unisys)
Among the other findings: Those aged 18 to 24 were less concerned about viruses and spam than those aged 25 to 49. Kelleher didn't want to speculate but said the younger age group seemed more comfortable with the Internet. The under-24 age group also missed the Melissa/ILoveYou/Slammer virus days and, therefore, aren't as concerned about epidemics. On the other hand, there's a spike among the 35- to 49-year-olds who would have been fighting these online epidemics five to ten years ago.
And people living in the South and West tend to be "extremely" or "very" concerned as opposed to people in the Northeast and Midwest.
(Credit:
Unisys)
More than 1,000 U.S.-based residents responded to questions from Unisys. The survey was conducted September 5-7 and is part of a larger, international survey due out in December.
- prev
- 1
- next
