Survey: Majority Of IT Professionals Concerned About Compliance With Specific Mandates

  • May 14, 2008

A new survey of IT professionals revealed that new regulatory compliance requirements -- for implementing satisfactory technology solutions to address security vulnerabilities, data leakage and compliance -- remain difficult for enterprise organizations to effectively achieve.

Shavlik Technologies recently announced results of its comprehensive survey of IT and security specialists conducted at both the RSA Conference 2008 and Infosecurity Europe 2008 events last month. The survey of 491 combined conference delegates from Europe and the U.S. identified their top security priorities and what solutions they may have implemented to manage the vulnerabilities that threaten their organizations.

According to the survey results, the top three priorities were: Data Protection / Leakage Prevention -- 53.2 percent; Internal Network Security -- 51.8 percent; and Policy and Regulatory Concerns -- 43.8 percent. Other significant priorities were patch management -- 38.6 percent and the security of virtualized machines -- 32.6 percent.

Delegates were also asked about the solutions implemented for audit preparation and patch management and whether they were satisfied with them. For audit preparation, only 60.8 percent indicated that they were satisfied or highly satisfied which suggests that there are a significant proportion of organizations unhappy with their current solutions. Respondents were equally unhappy with patch management solutions with 40 percent reporting they were unsatisfied with their current technology solution.

“Despite efforts to apply various technologies companies continue to struggle with efforts to manage and close vulnerability gaps, while concerns over regulatory compliance are driving them to look for more ways to simplify through automation,” said Mark Shavlik, CEO, Shavlik Technologies. “Generally, organizations struggle to manage their security and compliance needs which leaves them open to attack or the discovery of a weak link by an auditor. We’re working with customers to resolve these issues to their satisfaction.”

Three quarters of respondents, 75.7 percent, confirmed they were either concerned or highly concerned over compliance with specific mandates such as PCI DSS, ISO 27002, or Sarbanes Oxley. They identified a broad range of solutions to manage the audit process -- a total of 123, ranging from “home grown” to “a lot of systems” from various vendors. Many respondents indicated they continued with manual processes for elements of their patch management process, even though more than 115 different solutions for patch management were identified in the surveys.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West

  • Live From ISC West 2024: Post-Show Recap

    ISC West 2024 is complete. And from start to finish, the entire conference was a huge success with almost 30,000 people in attendance. Read Now

    • Industry Events
    • ISC West

  • ISC West 2024 is a Rousing Success

    The 2024 ISC West security tradeshow marked a pivotal moment in the industry, showcasing cutting-edge technology and innovative solutions to address evolving security challenges. Exhibitors left the event with a profound sense of satisfaction, as they witnessed a high level of engagement from attendees and forged valuable connections with potential clients and partners. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles. 3

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3