Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Monday, October 10, 2005

Top Ten Strategic Priorities for 2006 according to PWC, CSO and CIO

Information security executives around the globe identified their top strategic priorities for the next year. Here are the 10 most common answers:

- Disaster recovery/business continuity
- Employee awareness programs
- Data backup
- Overall information security strategy
- Network firewalls
- Centralized security information management system
- Periodic security audits
- Monitoring employees
- Monitoring security reports (log files, vulnerability reports and so on)
- Spending on intellectual property protection

This list further reinforces the reactive nature of information security. Awareness programs often score high as a strategic priority because they’re relatively low-cost.  One should expect number 10 on this list will shoot up in priority next year, given the steady stream of identity thefts and other major information crimes.

Posted on 10/10