
Which isn't what you want to hear...
By Andy McCue
Published: 12 May 2003 13:54 GMT
Hack attacks are becoming increasingly sophisticated, with over a third of banks and financial services companies reporting a security breach in the last year, according to a new survey.
Of the 39 per cent who admitted their systems had been compromised, 16 per cent were due to external attacks, 10 per cent internal breaches and 13 per cent both, according to the 2003 Global Security Survey of worldwide financial services institutions by consultant Deloitte Touche Tohmatsu (DTT).
Although this is the first year of the survey, Simon Owen, partner responsible for risk in financial services at DTT, said based on experience the figures represent an increase and explode the myth that the biggest threat to a company comes from employees.
"It is not just an internal informed activity," he said. "We are seeing more sophisticated attacks and a high level of intelligent attacks with a combination of attacks and the ability to source lots of information beforehand."
Europe leads the way in implementing security policy and standards, as well as leading-edge technologies such as public key infrastructure (PKI) and biometrics. But Owen said it was "worrying" the region also had the lowest level of business continuity and disaster recovery planning.
The US has the highest level of maturity and adoption of disaster recovery planning, following the 11 September terrorist attacks.
IT security is still seen as a necessary cost of doing business by many companies and budgets continue to rise to six to eight per cent of overall IT spend.
And despite the severe economic downturn almost half increased security staff in the last year and two-thirds plan to appoint a chief security officer or chief information security officer in the next two years.
The financial viability of many security vendors and complex integration issues with many products continue to cause IT directors headaches but the main security technologies being looked at by banks over the next 18 months include PKI, smart cards and biometrics.
DTT interviewed 175 senior IT executives to compile the survey.
The successful applicant will act as Client Security Officer for one of the major Defence accounts. There will be some travel required for working at ...
Information Security Officer - ISO27001, ISO27002, ISO17799, BS7799, ISO9000, ISO9001 Role - Information (InfoSec) Security Officer Location - ...
Security Officer. Information Security. Cross Platform. Security Best Practice. Networking. Firewall. Crest. Swift. Microsoft Office. Our client is a ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Seb Janacek Minority Report: Mac Mini - a real nowhere machine What could it have become with a little more love and attention?
Bethan Jones Can I use a netbook as my everyday work machine? Part II silicon.com sub editor reveals whether her netbook delivered