Five Security Budget Tips for 2011
Five tips that IT organizations should use to remind the business side why it needs to invest in security.
By now it's become apparent to the world that the U.S. government has some fairly inadequate policies when it comes to securing information. With more than 250,000 cables-also known as e-mail-circulating the globe, the fallout from this massive security breach will be felt for years.
But ere for the grace of God, it could just as easily be your company that is the next victim of a series of leaks. In fact, the folks that run WikiLeaks reportedly plan to soon target banks and other companies.
And truth be told, most of these companies are no better at securing their data than the U.S. government, especially when it comes to preventing determined insiders from accessing information they shouldn't have.
The reason this situation exists, says Michael Denning, the newly appointed general manager of the security business unit at CA Technologies, is that too many companies can't really afford the security expertise to set up a real access control and data classification system and then effectively manage it. Denning, who just left Verisign to join CA Technologies, says that these other security breaches related to WikiLeaks will drive more companies to add that capability. But rather than buy software, more of them are going to be interested in security-as-a-service offerings.
The reality of the situation is that once an access control system is put in place, there may be only a handful of incidents a year that require hands-on expertise. Rather than pay full-time employees to sit around and wait for something to happen, more companies are going to opt for security technologies that can be delivered and managed as a service.
Denning says that in the age of cloud computing a whole series of more robust security services are rapidly evolving. And given the fact that most IT organizations know that the next major security breach is all but inevitable, it would seem that 2011 is going to be the year we finally see security services come into their own.