Posted in: Information security
One important component of a company’s IT security strategy is making sure all of the software the organization uses is free of vulnerabilities that could give hackers access to the network. Many execs feel their company is doing a good job at protecting application security, according to a recent survey. But IT staff is likely to disagree.
Application security is a priority for IT departments. Many vulnerabilities at the application level can result in costly data breaches.
However, other areas of security typically still take precedent. That includes network security and operating system security. Often, the result is that organizations spend more money in those areas than for application security — even though many experts say applications contain the greatest number of vulnerabilities.
Another reason may be that those in charge of spending aren’t aware of all of the risks in applications.
There’s a big gap between a company’s executives and its IT staff members when it comes to views on application security according a recent report published by the Ponemon Institute and Security Innovation.
Among the survey respondents, 67% of executives, 64% of directors and 58% of managers said that their company’s application security program was mature.
However, only 27% of technicians and 33% of IT staff agreed.
In order for budgets to be allocated properly, the people responsible for those decisions need to get the right information from the people on the front lines.
Those survey findings suggest that for many companies, more regular and open communication between both sides is needed to get everyone on the same page.
FinanceTechNews.com delivers the latest Finance news once a week to the inboxes of over 150,000 Finance professionals.