Mexicans still despise Business Information Security
September 19th, 2011 | 
Author: 
Those responsible for information security in Mexican organizations are still on their own and are not covered in the organizational chart or decisions that impact business areas revealed global survey of Ernst & Young.
Only 12% of respondents said that their organization exists in a security strategy that is fully integrated with business strategy, according to figures from the Global Survey of Information Security consulting firm.
In the same indicator, the percentage of companies in other countries that have a security strategy, which is also alienated the business, rose to 37%.
According to the survey in the country, 22% organizations have a strategy of information security. This means that in Mexico only 1 in 5 do not have a security strategy. In the world, the scenario is worse, as are 29% organizations have not developed such a strategy.
Among respondents in Mexico by Ernst & Young include policy makers and financial executives, auditors, responsible for information security and information technology, half of them small and medium enterprises, 25% belonging to large and 25% to corporations.
The biggest challenges, according to respondents globally are organizational awareness and availability of skilled human resources. In Mexico the third most important challenge is the understanding of emerging technologies in the world, having an adequate budget.
“Today the information security of any business is a matter that should be on the agenda of any organization because information is the most important asset they have,” said Ricardo Lira, Senior Manager IT Advisory practice in Security About Ernst & Young.
According to Ernst & Young the most backward country in terms of information security is in crisis management, protection of privacy and personal data and sensitive information leakage.
Do you know anyone up?
The security areas that are developing strategies to protect the information of the organization are not communicating with the other areas of the business much as they should, the survey found, and rather report to the IT areas.
Just over half of respondents in Mexico (52%) meets monthly with only the IT department heads. This figure, combined with that 53% of Mexican respondents said the IT area has the primary responsibility for managing business continuity, means that technology professionals continue to command decisions and the budget spent on security.
“The safety area is still very much linked with IT, but it is a problem throughout the organization. (Those responsible for safety) can not be limited to the area of IT to understand the requirements of each business area and incorporated into the strategy of information security organization, “said Lira.
The survey revealed that, according to the organizations, the most important damage would experience after suffering a security incident is the damage to its reputation and brand, followed by the loss of customers and the loss of income. This fact, Lira said, means a change in the impact of the gaps, from a purely strategic one computer.
Among other findings, 1 in 3 organizations carry out any type of assessment to its suppliers and partners to see if they have a strategy to protect your information.
In addition, 44% of respondents in Mexico said not to encrypt the information as a precaution to prevent data theft and the same percentage said they had a clear understanding of the laws and regulations applicable to the privacy of information.
Posted in 
Tags: