The results of information security and data management services provider HarrierZeuros' latest survey suggest that 75% of major organisations are now having to look for a means of justifying the cost of their security spend against a reduction in risk.

"Companies can no longer afford to pour money into the bottomless pit of IT security," said HarrierZeuros spokesperson Richard Davis. "This survey shows they want confirmation that any investment will bring a tangible reduction in risk. Up until now the industry has relied on scaremongering techniques and horror stories to reinforce the argument, but with services such as dependency modelling becoming more widely available end users are now demanding that improvements to their IT infrastructures will realise cost benefits."

Questioning 5% of the 9,400 attendees at the recent InfoSecurity Europe Conference and Exhibition, the survey quizzed a number of FTSE 100 companies. Of those organisations with a security policy in place, over 85% had reviewed it during the past 12 months. 16% of those organisations said they reviewed their policy as part of an ongoing process. Good news, then.

Source

SMT