This appears to reflect on the security gaps that these CIOs and CISOs acknowledge exist in their organizations adopting cloud computing and tablet adoption. 55% said they plan to spend more to secure new technologies, while 63% acknowledged that they felt they had "no formal architecture framework in place, nor are they necessarily planning on using one." The Ernst & Young study indicated these IT professionals may feel they have "a patchwork of non-integrated, complex and fragile defenses" that creates gaps in their security.
Those that did have a defined security architecture pointed to the Open Group Architecture Framework, the ANSI/IEEE 1471:ISO/IEC 42010 standards, and other references such as defense department frameworks defined in the U.S. and the United Kingdom.
A major complaint from 43% of respondents is that they can't find the right people with the right skills and training to handle information security jobs. And when asked what threats or vulnerabilities have most increased risk over the last 12 months, the answer at the top of the list was "careless or unaware employees," followed by "cyber attacks to steal financial information."
Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: MessmerE. E-mail: email@example.com.
Read more about wide area network in Network World's Wide Area Network section.