Information Security - DBERR publishes results of 2008 survey of breaches

View the next news item for Data Protection
View the previous news item for Data Protection

8 May 2008

The Information Security Breaches Survey is published bi-annually by the DBERR and PricewaterhouseCoopers plc. The results of the 2008 survey have been published and show, among other things, that most businesses are now investing in security defences and that information security breaches are causing less disruption to companies' operations than two years ago. In the past six years, the number businesses that have published security policies to their staff and provide on-going security awareness training has doubled. However, only 11% of businesses have implemented the sensible British Standard on information security management and 79% are not aware of its contents.

The Executive Summary points out several areas of concern that businesses still need to address, namely:

  • 10% of websites that accept payment details do not encrypt them

  • 21% spend less than 1% of their IT budget on information security

  • 35% have no controls over staff use of Instant Messaging

  • 48% of disaster recovery plans have not been tested in the last year

  • 52% do not carry out any formal security risk assessment

  • 67% do nothing to prevent confidential data leaving on USB sticks, etc.

  • 78% of companies that had computers stolen did not encrypt hard discs

  • 84% of companies do not scan outgoing email for confidential data.

Five recommendations for all businesses are provided:

  1. Understand the security threats you face, by drawing on the right knowledge sources.

  2. Use risk assessment to target your security investment at the most beneficial areas.

  3. Integrate security into normal business behaviour, through clear policy and staff education.

  4. Deploy integrated technical controls and keep them up to date.

  5. Respond quickly and effectively to breaches, e.g. by planning ahead for contingencies.

...UK Payroll News - Latest

Further information:
2008 information security breaches survey: executive summary
2008 information security breaches survey: technical report

The UK Payroll News is sponsored by HRD & Payroll Solutions

Discuss this news item in the PayPerShop Forum

Top News Category Index Send E-mail Home Page








Payroll & Human Resources - PayPerShop Logo For Payroll and Human Resource Professionals

UK Payroll & HR US Tax Resources Worldwide Payroll & HR
Google
Home Contact

Copyright © 2009 PayPerShop Ltd - Payroll, Human Resources (HR) & Payroll Taxes


Popular UK Pages:
UK Payroll News Categories | Payroll & HR Events - Photos | Payroll | UK Payroll Software A-Z | Payroll Software Downloads | Payroll Question | Payroll Search / Swicki | Deductions From Wages | UK Holiday Pay | National Insurance Numbers | Tax Codes | Employed or Self-Employed | Data Protection | Identity Fraud | BACS Payment - BACSTEL-IP

Popular US Pages:
US Payroll Software A-Z | Income Tax Withholding | Prevailing Wages and Hours | US Minimum Wage | US Workers' Compensation | US Labor Standards | US Unemployment Insurance | US State Holidays / Legal Holidays