March 13, 2012
A survey conducted by Evaluserve has found that very few companies have any way or idea about how to quantify financial impacts due to a data breach. The survey found that only 34% of companies were “strongly confident” about quantifying the potential financial impact of a data breach. Only 45% of the companies surveyed felt that they were “strongly confident” in identifying their most critical security threats.
The survey quizzed a minimum of 1,000 workers in roughly 495 businesses and organizations about the globe. Included had been workers within the Usa, Canada, United Kingdom, Germany, France, Brazil, Australia, Singapore, and New Zealand. The survey was posted in security business McAfee’s “State of Security 2012 Report”.
“We are nonetheless struggling in business with creating security an integral component from the company operation”, stated Jill Kyte, vice president of advertising at McAfee. “This is what I see as a large gap”, she stated.
The study went on to locate that about 33% of organizations are behind in either buying or implementing the most recent security technologies. The technologies identified as not getting been bought or launched inside a third from the businesses included gateway URL filtering, embedded security goods, virtualized atmosphere security, information leakage prevention, vulnerability assessment, mobile security, application whitelisting, and next-generation firewalls. Some companies have found that hardware authentication is very important for saving money.
With only 34% of companies surveyed ?strongly confident? that they understood the financial impact of a data breach on their bottom line, it is astounding that 2.3rds of other companies don?t know what the impact will be. It is easy to make a rough estimate when analyzing the affect on the bottom line by looking at the recently combined class action lawsuits against Sutter Health. The combined lawsuit asks for $1,000 per injured party. There are 4.24 million individuals who were harmed by this breach. That?s a $4.24 billion claim against the company if the company if the company is determined to have been negligent in protecting their client’s personal information.
The On-line Trust Alliance (OTA) has just released a report that dubs 2011 ?The Year from the Breach.”A minimum of 558 information breach incidents price U.S. companies over $6.five billion final year. Analysis of public breaches discovered the typical per company price was $7.two million, or $318 per record compromised, representing an improve of $100-plus per record price compared to 2009.
General, organizations in North America and Germany are much more most likely to possess a formal strategic security strategy than those organizations in other regions from the globe. This might be attributed towards the regulatory environments in these nations.