- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
If it seems as though digital privacy invasions and personal-data breaches happen every day in corporate America, these survey results will only reinforce that notion.
A recent survey of 827 security and privacy professionals in North America found that 66% said they were aware of six to 20 “privacy incidents” in their organizations during the past year where personally identifiable information was mishandled or exposed.
In addition, 85% of the respondents said there was at least one significant data breach that required notification in the last 12 months. That's according to the “Enterprise@Risk: 2007 Privacy and Data Protection Survey,” which was conducted by Deloitte & Touche and Ponemon Institute. The sheer volume of incidents large and small has resulted in security and privacy professionals complaining they spend too much of their time in incident-response activities such as notification and remediation rather than on root-cause analysis and employee training.
The respondents in the “Enterprise@Risk” survey work in industries of financial services, healthcare, technology, government, consumer business and manufacturing.
Of the respondents to the survey, 546 are security professionals who indicated they were spending most of their time on incident response, execution of program goals and data-protection design. The privacy professionals, the remaining 281 individuals in the survey, also said they spent most of their time on the same areas.
Seventy-one percent of the security professionals said they report to the CEO. However, privacy officers, more associated with IT governance, had a more varied reporting structure.
Thirty-eight percent of the privacy officers report to the general counsel, 21% to the head of Compliance, 11% to the CIO and the remainder to either the CEO, head of human resources, or the CFO, among others.
According to the survey, the privacy professionals earn an average salary of $125,427, while security professionals made $100,694.
Of the privacy professionals, 52% were male and 48% female, with the males earning $130,481 on average, while females earned $120,753.
Of the security professionals, 67.9% were male, 32.1% female, with the males earning an average $101,083 and the females $99,884.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (2)
Depends on the regulation that was violatedBy Anonymous on December 17, 2007, 11:53 pmSome regulations demand that even a seemingly minor breach be reported. They may not have a choice in the matter. Some states even have their own regulation about...
Reply | Read entire comment
What is a serious data breach and what is not?By BenjaminWright on December 17, 2007, 8:17 pmAs we see from the report, many data security breaches have been made public in recent years. But I believe more breaches are being reported than is wise. A minor...
Reply | Read entire comment
View all comments