Survey: Regulatory Compliance Top Concern Of IT In 2011

  • Apr 20, 2011

Regulatory compliance will be the top business issue affecting enterprise information technology (IT) in the next 12 months, according to Top Business/Technology Issues Survey Results, a new survey of more than 2,400 ISACA members from 126 countries.

Conducted by ISACA, a global association serving more than 95,000 business and IT constituents, the survey found that the increase in regulations, data breaches and issues such as cloud computing and personal technology in the workplace are accelerating risk.

“IT cannot be managed in a vacuum. Increasing government regulations, consumer privacy concerns and hacktivist attacks are challenging enterprise IT assets in new ways,” said Tony Noble, CISA, a member of ISACA’s Guidance and Practices Committee and vice president of IT audit, Viacom Inc. “The study also reveals that the business side of the organization believes IT is managed in a silo, which indicates an opportunity for better aligning business with IT to unlock greater value.”

Key business issues affecting IT, according to Top Business/Technology Issues Survey findings, are:

  • Regulatory compliance.
  • Enterprise-based IT management and governance.
  • Information security management.
  • Disaster recovery/business continuity.

Regulatory Compliance is No. 1 Concern

Enterprises need to manage growth in a challenging global economy while complying with more regulations and standards. Within this topic, the top-ranked technology concern (chosen by 53 percent of respondents) was segregation of duties and privileged access monitoring.

Managing IT Project Risk

The survey shows that there is a growing focus on enterprise-based IT management and the governance of enterprise IT (GEIT). Managing IT project risk tops the list of concerns within this area, rated as most important by 45 percent.

Increased Security Breaches

A top concern expressed by ISACA members was the lack of senior management involvement in setting direction for information security, which was ranked as important or very important by 80 percent of responses.

“WikiLeaks, the Zeus botnet and a rise in identity theft show that the variety and volume of threats is rising. Security is everyone’s business, not just IT’s. Organizations need top-down commitment,” noted Greg Grocholski, CISA, director, ISACA and corporate auditor, The Dow Chemical Co.

Lack of Awareness

All business activity is at risk for disruption, yet continuity remains an elusive goal. According to the survey, the biggest problem (87 percent) is the lack of awareness among business managers that they are responsible for being able to maintain critical functions throughout a disaster.


 

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • New Research Shows a Continuing Increase in Ransomware Victims

    GuidePoint Security recently announced the release of GuidePoint Research and Intelligence Team’s (GRIT) Q1 2024 Ransomware Report. In addition to revealing a nearly 20% year-over-year increase in the number of ransomware victims, the GRIT Q1 2024 Ransomware Report observes major shifts in the behavioral patterns of ransomware groups following law enforcement activity – including the continued targeting of previously “off-limits” organizations and industries, such as emergency hospitals. Read Now

  • OpenAI's GPT-4 Is Capable of Autonomously Exploiting Zero-Day Vulnerabilities

    According to a new study from four computer scientists at the University of Illinois Urbana-Champaign, OpenAI’s paid chatbot, GPT-4, is capable of autonomously exploiting zero-day vulnerabilities without any human assistance. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3