IT Managers Overconfident About Security, Study Says

A new study by Deloitte & Touche says that while the majority of companies are confident they can prevent security breaches, most of them don’t have the strategies in place to help them do that.

In an article on the CIO.com website, Katherine Walsh says the survey found that 69 percent of companies say they can mitigate external security threads. “However, 46 percent of those same companies don’t have a formal information security strategy in place – something that would seem to be necessary to mitigate those threats,” she says.

The study also found that although 69 percent say they can cope with today’s security challenges, only seven percent believe they are prepared for future security threats. Only 62 percent say security is a key imperative at the board or executive level, and 56 percent are confident they can address insider threats stemming from employee misconduct.

Walsh says the study also found that a majority of companies have not yet addressed physical and information security convergence, with 64 percent of respondents saying they have done little or nothing to integrate the two. Similarly, five percent of companies increased their security investment by 15 percent or more in the past year.