The CSO’s Security Compliance Agenda
Benchmark Research Report
Excerpt
The research shows some controls and procedures are being measured commensurate with their deficiency rates. However, two of the top-10 most deficient controls are not being measured commensurate with their defiency levels (Figure 4).
Figure 4: Over- and Under- Measurement by IT and Internal Controls
Table of Contents
Introduction
Key Findings
The most critical compliance pressures
Most deficient IT security controls
Are resources properly focused
Organizations are realigning IT resources
The impact of regulatory compliance on corporate IT resources
Organizational changes are underway
Detailed Findings
Regulatory compliance pressures
Mandate requirements vary by size of company
Deficient IT security controls and procedures surface
Are IT security and internal controls measuring the right stuff?
How often do you measure?
Organizations are realigning resources
Impact of compliance on IT security
The role of the CSO
Organizational change for IT security and internal controls
Overview of Respondents
End Notes
List of Figures
Figure 1: Most pressing regulatory mandates for IT security
Figure 2: Regulatory mandates by size of organization
Figure 3: Most deficient IT security controls and procedures
Figure 4: Over- and under- measurement by IT security and internal controls Figure 5: Actions to realign IT resources and improve results
List of Tables
Table 1: Impact of compliance9
Table 2: Role of the CSO
© IT Policy Compliance Group, 2005
You must be a member to view this report. Join ITPolicyCompliance.com now!
| 
