ITMD releases new Peer-Led research report on security

IT Market Dynamics, Canada’s most widely-read IT research firm, has released another in its series of Peer Led Research Program deliverables – analysis that combines ITMD’s statistical research with perspectives from leading Canadian experts and practitioners. Entitled “IT Security: Key Management Issues for 2012-2013,” the PowerPoint-format report presents insight into the threat sources and IT responses that are essential to safeguarding Canadian corporate data assets over the next 12-18 months.

Guided by insights provided by Tyson Macaulay of McAfee and Toni Mazur of Mazur Associates, the report details six key trends that will shape security management strategies through the end of the year and into 2013. These trends, and the specific concerns motivating security-responsible IT management to find practices and technologies to address these issues, include:

• Cloud security: Adoption of IaaS, PaaS, and SaaS solutions continues to grow. How can security-responsible managers ensure that cloud providers meet specific criteria in areas like control, data residency, and backup and recovery?
• Botnet and malware management: “Malicious software is all about stealth and low-n-slow information exfiltration,” says Tyson Macaulay. Its consequences, such as data theft, can have a deleterious effect on an organization’s brand. What are the best ways to ensure that the organization has appropriate safeguards against malicious software?
• Mobile security/endpoint security: The increasing use (and diversity) of mobile devices means that, in Toni Mazur’s words, “clients (internal and external) are now in control of the environment.” What combination of policies, training, and technology (DLP, MDM, encryption, etc.) is needed to keep users – and the networks that they connect to – safe?
• Big Data and legal compliance: Big Data promises new capabilities for market and operational management, but also introduces new complexities relating to compliance, data residency, and re-identification. What education is needed to help IT (and business) management understand what should and should not be done with data?
• Staff culture: Data loss can be caused by numerous factors, including human error, malcontent employees, theft or loss of devices and malware. As Mazur says, “you need education and effective policies and you need to keep these current.” What safe information practices can – and should – be applied to your organization?
• IPv6 migration: The report quotes Macaulay observing that most managers “have barely considered [the impact of IPv6 migration] because it is a slow, simmering issue - like climate change for farmers; one day they will wake up and their crops will be dying.” What is involved in creating an effective, secure migration path to IPv6?

Page: 1          1   |  2   |  Next Page