New Year's Resolution: Dozen Ways to Improve IT Security
Credit unions use technology that's constantly evolving, so it makes sense for their security strategies to evolve as well.
As credit unions consider moves to boost their security in 2011, they may want to consider the 12 annual recommendations offered by Forrester Research of Cambridge, Mass., in a new report titled, "Twelve Recommendations for Your 2011 Security Strategy."
"Despite the fact that the top three challenges all relate to business orientation and alignment, for the next 12 months leaders across North America and Europe do not plan to focus on efficiency, better reporting or IT alignment," Kark said. "Instead, most security leaders plan to focus on reactive areas."
Urging firms to take their strategies in a different direction, Forrester outlines 12 recommendations to help them reach goals of improving business structure and developing better insight into the IT environment.
The final set of recommendations encourages the improvement of reporting and analytics. First, test and validate all security controls regularly. Then, arm business leaders with accurate information about the security risks they face. Next, keep executives informed about the firm's "overall risk posture." And finally, consider the value of researching what other firms are doing to improve security.
"Many CISOs admit that finding relevant information from the realms of data that is churned out is like finding a needle in a haystack," Kark said. "CISOs need to ensure that their metrics and reporting efforts focus on three levels of decision making: operational, risk and business-centric."