North Brunswick, NJ (BankInfoSecurity.com) April 5, 2006 – BankInfoSecurity.com recently polled it’s 35,000 member user-base to find out what the primary focuses are for banking and credit union information security practitioners in 2006. The overwhelming response pointed to risk assessments as the top priority.
Respondents were given multiple topics to choose from which included information security programs, risk assessments, IT audit programs, incident response plans, business continuity and disaster recovery, vendor management, and “other”. Over 30% of those who responded cited risk assessments as their top priority for 2006. Business continuity and disaster recovery came in second at 20%, and information security programs came in third at 18%.
The results are not necessarily surprising since IT risk assessments are a cornerstone of any information security program, and they have become a hot topic for examiners recently. A good IT risk assessment lets banks understand which of its information is the most critical, the threats to that information, and the effectiveness of its controls to protect against those threats. Recent natural disasters such as Hurricane Katrina have opened the eyes of many information security specialists and so the emphasis on business continuity and disaster recovery was expected.
For additional information about this survey or any other polls produced by BankInfoSecurity.com, please email firstname.lastname@example.org or visit https://www.bankinfosecurity.com.