Database - CIOInsight

Home

Database

Enterprise Data Breaches: Ignorance Isn't Bliss

Database Slideshow:
Enterprise Data Breaches: Ignorance Isn't Bliss

By Dennis McCafferty on 2010-12-06

A significant number of IT professionals in a recent survey say that their companies are likely to be the target of a data breach over the next year, according to the report "Data in the Dark: Organizational Disconnect Hampers Information Security."The report, sponsored by security vendor Application Security Inc., is based on a survey conducted by Unisphere Research. The survey polled more than 760 members of the Professional Association for SQL Server (PASS). The majority of respondents are database administrators; other respondents included IT managers and developers. Respondents attribute the shortcomings of overall data security to several factors, including budget limitations, a lack of understanding, and poor accountability and oversight. In fact, four of 10 respondents say they don't even know how much their company spends on IT security.

	LATEST STORIES
	- IT Careers: Departures Mark Exec Shuffles at... - Microsoft Office on iPads, Android Tablets C... - Quest Software Acquisition Would Bolster Del... - N.J. Mayor, Son Arrested for Computer Hackin... - Why HP's Next Leader Should Come from Within...

BLOGS

Tim Moran: CIOs Go To Market

Tony Kontzer: Fed CIO Aims to Root Out IT Waste

Tony Kontzer: Imagine There are No CIOs

Tony Kontzer: Will the Cloud Solve Federal IT Security?

Tony Kontzer: Privacy, Security and the CIO

John Parkinson: When Good DR Goes Bad

Tony Kontzer: What's So Special About iCloud?

Tony Kontzer: Farewell Kundra, We Hardly Knew Ya

More blogs >>

20 percent

20 percent of respondents say it's at least “somewhat likely” that their organization will experience a data breach within the next 12 months.

Enterprise Data Breaches: Ignorance Isn't Bliss - Database

7 percent

7 percent of respondents say their organizations have suffered at least one confidential data breach within the past 12 months.

6 percent

6 percent of respondents say they aren't sure whether or not their organizations have suffered a data breach, but it's possible.

Root causes of confidential data breaches over the past 12 months (percent respondents)

External attack (34 percent)Human Error (29 percent)Insider attack (21 percent)Accidental loss of device(s) with confidential data (20 percent)Malicious code/viruses (18 percent)Abuses of privileges by IT staff (15 percent)

14 percent

14 percent of respondents say that the total cost of data breaches over the course of a year amounts to at least $10,000.

57 percent

57 percent of respondents say that they don’t know the cost of data breaches to their organizations over the past 12 months.

24 percent

Nearly one quarter of respondents say that confidential/personally identifiable information (such as Social Security and credit-card numbers) accounts for more than 26 percent of all enterprise data compromised.

33 percent

Only 33 percent of respondents say they encrypt personal identity information in all databases.

Functions impacted by data breaches in the past year (percent respondents):

Database operations (46 percent)Web apps (27 percent)E-mail (19 percent)Core apps (15 percent)Network components (14 percent)

How do you spend your database security time? (percent respondents)

Configuration/patch management (21 percent)Database audit/threat management and activity monitoring (17 percent)Overseeing user-rights management (15 percent)

Biggest barriers to improved security (percent respondents)

Budget constraints (55 percent)Lack of understanding of threats (39 percent)Lack of formal database security processes and procedures (36 percent)Disconnect between IT operations and executive management team (30 percent)Management complacency/lack of awareness (28 percent)

31 percent

31 percent of respondents say their organizations have either decreased or frozen information security spending in the past 12 months.

Recent Slideshows

FEATURED SPONSORED VIDEOS

Security and Availability Essentials for Running Your Business in the Cloud

Cyber Security Trends and Challenges for 2012

IPv6 Integration and Migration

View More Videos

Brought to You By

FEATURED SPONSORED ARTICLES

Erasable E-Paper Saves Trees, Cuts Costs

Why Smart Companies Should Adopt the Lessons of Gaming

Interest in Mobile WiFi Hotspots Fuels New Solutions

A Closer Look at Public Cloud Security

View More Articles

Brought to You By


		Try Windows Azure free for 90 days Introducing the world's first family of systems with integrated expertise FREE Securing Smartphones & Tablets for Dummies Book from Sophos 77% of the Fortune 500 Manage Content Securely with Box. Leverage your virtual computing environment with Dell. Build an IT Infrastructure That Delivers the Future 5 New Technologies That Will Change Enterprise IT

CIO Insight:	Issue Index \| Contact Us \| About \| Advertise \| Magazine Customer Service \| Site Map
Quick Links:	Enterprise Mobility Zone \| Management Case Studies \| Loyalty Programs \| Term Sheet \| Strategy Maps \| Organizational Behavior \| Net Present Value Calculator \| Link to Us
	Security: Network Security Entprise Networking Infrastructure Security How To: Data IT Security News Cheap Hack Blog Security Watch Blog Storage: Storage Cloud Storage Storage Virtualization Network Access Storage Storage Reviews Data Storage News How To: Storage Storage Station Blog Computing: Apple OSX Linux Systems Windows Vista Managed Print Services Cloud Computing PC Reviews Microsoft Watch Blog Apple Watch Blog Google Watch Blog Communications: VoIP Solutions Wireless Technology Messaging Software Web Services Mobile Applications Wireless News Mobile Reviews Apps & Development: Application Development SAAS Search Engines Database Software Web 2.0 IT Project Management Emerging Tech Blog CIO Insight Blogs CIOs
	Vertical Markets: Federal Government IT Health Care IT Finance IT Mid-Market Channel Partners Careers Blog Value Added Resellers More eWeek Links: Green Computing Tech Knowledge Center Tech Newsletters Tech RSS Feeds White Papers Tech Podcasts Tech Videos Magazine Subscriptions Enterprise Websites: ZDE Home eWeek Baseline Channel Insider CIO Insight eSeminars eWeek Mid-Market Publish Online Web Buyers Guide Developer Websites: Dev Shed DeveloperShed ASP Free MS DevSource SEO Chat Codewalkers Tutorialized Scripts.com Dev Mechanic Dev Articles Web Hosters Dev Hardware Technology Websites: Device Forge Desktop Linux Linux Devices Windows for Devices TechDirect iGrep Search Engine PDF Zone Linux Watch
	Use of this site is governed by our Terms of Use and Privacy Policy Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited. eWeek is your best source for the latest Technology News. ZDE Cluster 5.

Database Slideshow:Enterprise Data Breaches: Ignorance Isn't Bliss