IT and finance depts. 'disagree' on key IT security issues
Enterprise need to align their finance and IT departments when it comes to IT security in the current economic climate, according to online security firm Sophos. A study by the company warns that such contrasting views between two departments could potentially leave holes in IT security, or mean investment is not spent wisely.
The study suggests that 60 per cent of finance departments see business continuity as the most important business issue, compared with just 20 per cent of IT teams. While, in the wake of several high-profile data fiascos, 45 per cent of finance departments surveyed rank data loss prevention high on the agenda, compared to less than 10 per cent of IT.
The report’s other key findings include:
- 50 per cent of finance departments agree that creating and implementing an IT security policy is vital, compared to just 15 per cent of IT departments.
- Only 11 per cent of IT departments believe that securing an online operation is necessary, in comparison to 38 per cent of finance.
The study also says that IT is clearly an ‘under-resourced and overworked business area’ – 55 per cent of businesses with between 250-500 employees have fewer than five dedicated IT staff; and many IT departments are so preoccupied with day-to-day activities that they do not have the time or resource to address the overall IT ‘health’ of their organisations, which could lead to gaps in security.
The report was conducted by Vanson Bourne for Sophos. It surveyed 251 IT and finance organisations with up to 1,000 employees over last Summer (2008).