In McAfee’s recent State of Security report, only 35% of respondents felt they were well aware and well protected against information security risks, and 38% responded that they were aware but not protected. This second group admits that they don’t have all of the security strengths necessary to protect critical business information. However, those that have a formal strategic security plan are more likely to classify themselves as having optimized security.
Take a look at this report and learn more about what others are including as key components of a formal strategic security plan, and how companies who have a plan do not overlook steps in the process. Successful organizations work to build an internal culture from the top down that looks at information security that includes identifying data sources, understanding potential threats and using a risk-based approach with business impact input to determine what to protect next.
For the respondents who acknowledged they have weakness in their protection, they can find the conviction to do what’s right in the long run by leveraging a formal strategic security plan. Your business continues to create, manage and protect its data year over year, and a strategic security plan should be reviewed and refined to adjust for changes to business risk in order to provide security and security purchasing recommendations that result in overall improved security and optimization.
By Kim Singletary