Regulatory compliance beats worms for the first time


	September 24, 2008 New version of PC Activity Monitor Pro (PC Acme Pro) added! more


	October 10, 2008 Parity provides free online identity management more High-tech bank robbers phone it in more Spread security risks with diversity more Corporate data loss not down to hackers more First quantum encrypted network goes live more Apple Posts Security Update 2008-007 more NT hacker blames 'segregation' more ASIC counter-spy to be a tough search more Scotland tightens security for mobile health-data more Home Office publishes data-sharing guidance more EDS loses unencrypted armed-forces data more Data-center security tools to not overlook more Microsoft promises huge patch day next week more Firefox add-on blocks 'clickjacking' attacks more

E-mail:

E-mail:

DISCLAIMER: Logging other people's keystrokes or breaking into other people's computer without their permission can be considered illegal by the courts of many countries. The monitoring software reviewed here is ONLY for authorized system administrators and/or owners of computers. We assume no liability and are not responsible for any misuse or damage caused by the keylogging software. The end user of this software is obliged to obey all applicable local, state, federal and other laws in his country of residence.

November 21, 2005

Regulatory compliance beats worms for the first time

Worms and viruses are becoming more pervasive, but surprisingly they are no longer the main concern of IT managers. For the first time compliance with regulations has become the number one issue for information security, according to an annual global information security survey by professional services provider Ernst & Young.

Despite the increased awareness of regulatory compliance, information security as a function is not becoming a natural part of organisation’s strategy, says the report.

“The gap continues to widen between the growing risks brought on by rapid changes in the global business environment and what information security is doing to address those risks,” says Susan Steedman, director of enterprise risk and improvement services at Ernst & Young.

More than 1300 companies, governments and non-profit organisations in 55 countries participated in the survey. Two thirds responded that compliance with regulations such as Sarbanes-Oxley or the EU’s 8th Directive is the most important driver of information security.

Steedman says that other concerns for IT managers today include the lack of experienced security specialists and new technology that promotes mobile workers.

“Because the majority of organisations have built their security system without the mobile component to it, the growing mobile technology is a change they need to get to grips with.”

The survey shows that few organisations actively manage third party security risks. More and more organisations are trading information electronically with clients and suppliers, but security management doesn’t keep track of that extensive use.

One fifth of survey respondents do not address the issue of vendor risk management at all, and one third say they have only informal procedures in place to do so.

The survey also reveals that less than half of organisations provide or plan user training, although over half of the respondents say their greatest challenge to successfully managing information security is finding well-trained IT staff. Fewer still train their staff on responding to security incidents.

“There seems to be a disconnection between business activity and the way information security is being carried out and that is a big concern,” Steedman says.

Source: Computerworld NZ

	All news for October 10, 2008:
	13:57	Parity provides free online identity management
	13:56	High-tech bank robbers phone it in
	13:56	Spread security risks with diversity
	13:54	Corporate data loss not down to hackers
	13:53	First quantum encrypted network goes live
	13:51	Apple Posts Security Update 2008-007
	13:50	NT hacker blames 'segregation'
	13:49	ASIC counter-spy to be a tough search
	13:48	Scotland tightens security for mobile health-data
	13:47	Home Office publishes data-sharing guidance
	13:47	EDS loses unencrypted armed-forces data
	13:45	Data-center security tools to not overlook
	13:44	Microsoft promises huge patch day next week
	13:43	Firefox add-on blocks 'clickjacking' attacks
	All news for October 09, 2008:
	13:44	Job losses on the way for IT security staff
	13:43	FSA threatens executives with fines
	13:39	Anatomy of a SQL Injection Attack
	13:37	Why Security Pros Hate SharePoint
	13:36	Remote Workers Care About IT Security -- Really
	13:35	US gov't report: Data mining is ineffective
	13:34	Shell warns employees of suspected data loss
	13:32	'Fast-flux' domains help botnets evade capture
	12:46	Mozilla locks in Firefox 3.1 feature list
	12:45	Colorado state Web site dishes out SSNs of CEOs, other top execs
	12:43	Kernell pleads innocent to Palin hack charge
	12:42	Symantec to buy e-mail security vendor MessageLabs
	12:41	Privacy groups praise bill curbing warrantless laptop searches
	12:40	Tenn. student indicted for hacking Palin's e-mail

All news for October, 2008
All news for 2008 year
All news for 2007 year
All news for 2006 year
All news for 2005 year
All news for 2004 year

DONATION: Keylogger.org is an independent research project supported by a team of enthusiasts. If you find this project useful or would like to help foster its continued development please consider making a donation using PayPal`s online secure payment service.

A PayPal account is not required. All major credit cards are accepted (MasterCard/Eurocard, Visa/Delta/Electron, American Express, Switch/Maestro, Solo). Simply click the button below.

Any amount would be useful and appreciated!

Thanks in advance for your support!