Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!

Global Technology Companies “Treading Water” When It Comes To Security And Privacy

February 4, 2008

Companies in the Technology, Media & Entertainment and Telecommunications industries (TMT) are overconfident and underprepared to prevent security breaches, according to a new Deloitte survey.

The 2007 global security survey of more than 100 TMT organizations reveals that 46 percent of TMT companies surveyed do not have a formal information security strategy in place. Despite this lack of a formal security strategy for nearly half the respondents, 69 percent report they are “very confident” or “extremely confident” about their organization’s effectiveness at tackling external security challenges.

“The technology, media & entertainment and telecommunications industries are still in a reactive mode when it comes to their approach to security,” said Rena Mears, Deloitte global and U.S. privacy and data protection leader. “A prerequisite for effective information security is the implementation of a proactive information security strategy that is closely linked to the company’s overall business strategy, business requirements, and key business drivers.”

Additional findings include:

Just 7 percent of TMT companies believe they are prepared for future security threats.

In the past year, only 5 percent of companies increased their security investment by 15 percent or more. And half allocated less than 3 percent of their IT budget to security.

Only 38 percent of companies believe their organization has all the skills and capabilities they need to respond effectively and efficiently to security challenges.

Only 62 percent of respondents believe that security is a key imperative at the board or executive level.

With more and more people working outside the office – whether it is at home, in the car, or in a local coffeehouse – businesses must adopt an end-to-end security strategy that spans the extended enterprise. This model requires that enterprises pay close attention to the security of its mobile workers as well as the security capabilities of its business partners.

The study also revealed a concern amongst respondents in the area of insider threats, with only 56 percent displaying confidence in addressing employee misconduct, whether it be deliberate or accidental. 

The convergence of physical and information security is something most TMT companies have not yet addressed, with 64 percent of respondents indicating they have done little or nothing to integrate the two. TMT companies could be missing out on opportunities to improve both information security and physical security by thinking about their strategy holistically.

For example, an access card or wireless chip normally used to control physical access could also be used to help prevent unauthorized information access. When someone tries to log on to an information system, the system could connect with the company’s physical security systems to make sure the person associated with that user ID is actually present in the building. If not, it could deny access and trigger a silent alarm.

There are signs that smarter security strategies will emerge in 2008 as the number of Chief Information Security Officers (CISOs) appointed in the companies surveyed increased from 57 percent to 65 percent in the past year. CISOs are still not industry standard among TMT corporate officers, yet they are one of the keys to effective information governance. The survey revealed that only 13 percent of CISOs have a tenure of over 10 years, whereas the highest percentage, 39 percent, responded having held a CISO position for just three to five years, indicating that there is still an upward trend toward governance frameworks overall.

“In order to get ahead of the problem, TMT businesses must increase their security efforts and investments and think more strategically than simply reacting to emerging threats,” said Mears. “The bottom line, there is a lot of work to be done.”

For the second year, Deloitte conducted an in-depth survey of security practices at more than 100 TMT organizations around the world. Respondents included companies from across all three sectors, 44 percent of which employ between 5,000-50,000 employees and 47 percent of which report revenue between $1 billion and $10 billion. 

To link to the full report:

http://www.deloitte.com/dtt/article/0%2C1002%2Ccid%25253D189692%2C00.html

Share This Story

Blog Topics

Security Blog

On the Track of OSAC

Blog Roll

Security Industry Association

Security Magazine's Daily News

SIA FREE Email News

SDM Blog

Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Coding on screen

Research reveals mass scanning and exploitation campaigns

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

2025 Security Benchmark banner

Events

May 22, 2025

Proactive Crisis Communication

Crisis doesn't wait for the right time - it strikes when least expected. Is your team prepared to communicate clearly and effectively when it matters most?

September 29, 2025

Global Security Exchange (GSX)

 

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing