Information Security - GoSecure

• About this group
• Forums

• Home
• Groups
• Information Security - GoSecure
• Forums
• Value versus Cost of Implementation
• Research Reveals Significant Savings Potential for Information Security and Audit

• 
  Sandy Riedel    Premium Member   Group moderator

  The company name is only visible to registered members.

  21 Feb 2009, 02:30 am

  Research Reveals Significant Savings Potential for Information Security and Audit

  Hello Everyone,
  
  The IT Policy Compliance Group (IT PCG) today announced the availability of its latest benchmark research report titled, "Managing Spend on Information Security and Audit to Improve Results." Based on research conducted with more than 2,600 firms, the study reveals that 68 percent of firms are under-spending on information security relative to the financial risks and losses they are experiencing. Yet incremental increases toward the funding of best practices are responsible for financial returns that can exceed more than 200 percent for most organizations.
  
  Link: http://www.itpolicycompliance.com/research_reports/spend_man...
  
  Thank you,
  Sandy Riedel
  Director of Special Projects
  GoSecure Inc.
  http://www.gosecure.com
  
  CNNMoney (02/19/09). IT PCG Research Reveals Significant Savings Potential for Information Security and Audit. Retrieved February 20th, 2009 from Link http://money.cnn.com/news/newsfeeds/articles/marketwire/0475...
  This post was modified on 21 Feb 2009 at 02:30 am.
  Sandy Riedel wrote: > Hello Everyone, > > The IT Policy Compliance Group (IT PCG) today announced the > availability of its latest benchmark research report titled, > "Managing Spend on Information Security and Audit to Improve > Results." Based on research conducted with more than 2,600 firms, the > study reveals that 68 percent of firms are under-spending on > information security relative to the financial risks and losses they > are experiencing. Yet incremental increases toward the funding of > best practices are responsible for financial returns that can exceed > more than 200 percent for most organizations. > > Link: > http://www.itpolicycompliance.com/research_reports/spend_management/re > ad.asp?ID=14 > > Thank you, > Sandy Riedel > Director of Special Projects > GoSecure Inc. > www.gosecure.com > > CNNMoney (02/19/09). IT PCG Research Reveals Significant Savings > Potential for Information Security and Audit. Retrieved February > 20th, 2009 from Link > http://money.cnn.com/news/newsfeeds/articles/marketwire/0475560.htm
• 
  Sandy Riedel    Premium Member   Group moderator

  The company name is only visible to registered members.

  28 Feb 2009, 11:17 pm

  Re: How to Design a Security Strategy (and Why You Must)

  Hello Everyone,
  
  We often hear from CIOs who are frustrated by the amount of money they allocate to security projects and technology, compared to the results they achieve. In some cases, executives perceive that security seems to worsen even as spending increases. The reasons vary, but the root cause usually is the same: the lack of a well designed, enterprise-wide security strategy.
  
  What's needed is a comprehensive security strategy that clearly defines the current state of the security environment and aligns with business objectives for the next three years.
  
  The first step in designing a security strategy is to understand the current state of the security environment. That may seem obvious, but many companies skip this critical step.
  
  The "spider diagram" (Figure 1- link is below ) shows the eight security functional areas (SFAs) that make up the security environment of an organization. To evaluate the current state of the environment, organizations must rate the level of security in each area, on a scale of 1 (manual processes, not integrated) to 5 (integrated, automated, optimized processes). This exercise will reveal the organization's security gaps and identify which are most critical. Focusing on these eight areas will enable the organization to address security proactively—the only way to gain control.
  
  Thank you,
  Sandy Riedel
  Director of Special Projects
  GoSecure Inc.
  http://www.gosecure.com
  
  CIO (02/26/09). Loveland, Gary. How to Design a Security Strategy (and Why You Must) . Retrieved February 28th, 2009 from Link http://www.cio.com/article/482446/How_to_Design_a_Security_S...
  
  Sandy Riedel wrote: > Hello Everyone, > > We often hear from CIOs who are frustrated by the amount of money > they allocate to security projects and technology, compared to the > results they achieve. In some cases, executives perceive that > security seems to worsen even as spending increases. The reasons > vary, but the root cause usually is the same: the lack of a well > designed, enterprise-wide security strategy. > > What's needed is a comprehensive security strategy that clearly > defines the current state of the security environment and aligns with > business objectives for the next three years. > > The first step in designing a security strategy is to understand the > current state of the security environment. That may seem obvious, but > many companies skip this critical step. > > The "spider diagram" (Figure 1- link is below ) shows the eight > security functional areas (SFAs) that make up the security > environment of an organization. To evaluate the current state of the > environment, organizations must rate the level of security in each > area, on a scale of 1 (manual processes, not integrated) to 5 > (integrated, automated, optimized processes). This exercise will > reveal the organization's security gaps and identify which are most > critical. Focusing on these eight areas will enable the organization > to address security proactively—the only way to gain control. > > Thank you, > Sandy Riedel > Director of Special Projects > GoSecure Inc. > www.gosecure.com > > CIO (02/26/09). Loveland, Gary. How to Design a Security Strategy > (and Why You Must) . Retrieved February 28th, 2009 from Link > http://www.cio.com/article/482446/How_to_Design_a_Security_Strategy_an > d_Why_You_Must_?taxonomyId=1419
• 
  Sandy Riedel    Premium Member   Group moderator

  The company name is only visible to registered members.

  14 Jun 2009, 9:53 pm

  Re^2: Making information security strategic to business

  Hello Everyone,
  
  Information security is undergoing a critical transformation. Traditionally viewed as a necessary evil or worse, a hindrance to business advancement , now, more than ever, it is critical that security strategy aligns to business priorities and enables innovation.
  
  And while the recent economic downturn will certainly drive security teams to focus on finding operational efficiencies, it is important to note that efficiencies alone will not be sufficient to get us out of the economic crisis the world is facing.. Political and business experts agree that business innovation is the key to the return of global economic stability and growth. And information security has a critical role to play in the drive toward innovation.
  
  Thank you,
  Sandy Riedel
  Director of Special Projects
  GoSecure Inc.
  http://www.gosecure.com
  
  Economic Times (6/12/09). Corvielle, Arthur, Making information security strategic to business. Retrieved June 14th 2009 from http://economictimes.indiatimes.com/Features/Corporate-Dossi...
  
  Sandy Riedel wrote: > Hello Everyone, > > Information security is undergoing a critical transformation. > Traditionally viewed as a necessary evil or worse, a hindrance to > business advancement , now, more than ever, it is critical that > security strategy aligns to business priorities and enables > innovation. > > And while the recent economic downturn will certainly drive security > teams to focus on finding operational efficiencies, it is important > to note that efficiencies alone will not be sufficient to get us out > of the economic crisis the world is facing.. Political and business > experts agree that business innovation is the key to the return of > global economic stability and growth. And information security has a > critical role to play in the drive toward innovation. > > Thank you, > Sandy Riedel > Director of Special Projects > GoSecure Inc. > www.gosecure.com > > Economic Times (6/12/09). Corvielle, Arthur, Making information > security strategic to business. Retrieved June 14th 2009 from > http://economictimes.indiatimes.com/Features/Corporate-Dossier/Making- > information-security-strategic-to-business/articleshow/4646974.cms