Compliance with regulations has taken the lead as the primary driver of information security, for the first time surpassing worms and viruses, according to a global survey by Ernst & Young.
The sheer number of regulations and the consequences of not complying with them has escalated information security to the boardroom. Nearly two-thirds of survey respondents – representing 1,300 global companies, government and non-profit agencies in 55 nations – cited compliance with regulations such as Sarbanes-Oxley, the EU’s 8th Directive or their equivalent as the primary driver of information security.
However, organisations are missing the rare investment opportunities that compliance offers to promote information security as an integral part of their business. The consultancy warns that information security - a key part of an organisation's ability to manage risk - is failing to keep pace with galloping technological change and the growing regulatory burden.» Download the document now 319.3 kb (Adobe Acrobat Document)