When it comes to security readiness, size doesn't matter. Larger companies (those with at least 1,000 employees) typically devote larger portions of their IT department's staff and budget to security measures, but they are also more likely to have suffered security breaches, to have seen the number of security breaches increase from the previous year and to have experienced more serious security problems.
Larger companies suffered an average of four security breaches in the past year, compared with just two breaches for companies with fewer than 1,000 employees, CIOs said. Those security breaches cost larger companies $79,000, compared with $56,000 for smaller companies.
Denial-of-service attacks were far more likely to have occurred at larger organizations, 36 percent of whose CIOs said their company suffered such an attack in the past year, compared with just 17 percent at smaller companies. Larger companies were also more likely to have been hit with a virus than smaller companies (81 percent versus 74 percent), and more likely to have had their Web sites defaced (27 percent versus 20 percent).