Fall Conference: Tech Managers Struggle To Show Value Of Security - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
News

Fall Conference: Tech Managers Struggle To Show Value Of Security

Convincing companies to invest in security is easier after last Sept. 11, but still takes work.

Last year's terrorist attacks made information-security issues a hot topic. But IT managers still struggle with the dilemma of how to make less tech-savvy company officers understand the demands of solid security and how to convince them to make the proper investments. A panel of tech professionals wrestled with solutions to that problem Tuesday at the InformationWeek fall conference in Tucson, Ariz., in a session titled "Smart Investing for a Solid Security Initiative."

The good news is that IT managers don't have as tough a task as they used to. If last year's events served as a wake-up call for business-security vulnerabilities, it also made it that much easier to ask company executives to invest in a solution. "I can say that it probably scared people enough that it's not a sell job," said Karlin Bohnert, chief technology officer at energy company PacifiCorp.

Financial-services company ABN Amro North America kicked its security efforts into high gear after the Nimda and Code Red viruses ran their course, senior VP and chief information security officer Sharon O'Bryan said. Her position was created following those infestations, and she has direct access to the board of directors, so it's easier for her to make a direct business case and promote security, she said.

Nonetheless, many IT execs still face an uphill battle convincing their bosses to invest properly in security, since the returns are largely hypothetical. "You're not going to get the ROI of the classic IT investment; it's a different business case," Bohnert said. Instead, managers need to find real-world examples of companies that weren't secure and got burned, helping execs understand that their return on investment is avoiding that unpleasant scenario. "You cannot sit there and say, 'it's a defensive posture,'" she said. "You have to say, 'here's what could happen to us.'"

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
The State of IT & Cybersecurity Operations 2020
The State of IT & Cybersecurity Operations 2020
Download this report from InformationWeek, in partnership with Dark Reading, to learn more about how today's IT operations teams work with cybersecurity operations, what technologies they are using, and how they communicate and share responsibility--or create risk by failing to do so. Get it now!
Commentary
The Best Way to Get Started with Data Analytics
John Edwards, Technology Journalist & Author,  7/8/2020
Slideshows
10 Cyberattacks on the Rise During the Pandemic
Cynthia Harvey, Freelance Journalist, InformationWeek,  6/24/2020
News
IT Trade Shows Go Virtual: Your 2020 List of Events
Jessica Davis, Senior Editor, Enterprise Apps,  5/29/2020
Register for InformationWeek Newsletters
Video
Current Issue
Key to Cloud Success: The Right Management
This IT Trend highlights some of the steps IT teams can take to keep their cloud environments running in a safe, efficient manner.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll