Why CIOs have to think about their outsourcing projects and responsibilities in 2015
Security continues to be a thorny problem for organisations to deal with. According to a recent survey by the Ponemon Institute, 67% of IT organisations have tightened access to company data because they had increased requirements or concerns around security. As companies hear about more and more data breaches occurring through an employee’s compromised remote access account or a vendor’s network login, the immediate reaction is to shut down access as much as possible.
At the same time, however, outsourcing around IT security is increasing. When Pierre Audoin Consultants researched attitudes towards outsourcing of security operations, the firm found that 34% of companies used managed security services, while 13% outsourced all their IT security requirements. Of the large enterprises surveyed, only 21% used no external services.
>See also: Hot source: the rise of outsourcing
For CIOs and CISOs in charge of IT teams, they are in between a rock and a hard place. The demands for reduced costs and more expertise around specialist systems makes outsourcing a viable and necessary consideration. However, they also have to deal with the business vacillating between demands for greater flexibility and more locked-down systems, depending on what stories are hitting the news. This makes managing long term security planning more difficult.