Why Read This
The scope of IT security continues to expand, and with it the visibility of the security organization is rising. Most security organizations now regularly engage with executives and business managers, either formally or informally, on strategy and prioritization. The issues of IT risk around regulatory noncompliance and data loss permeate executive thought and factor into business and IT decisions around cloud and virtualization, offshoring and outsourcing, mobility, and Web 2.0. Meanwhile, we face more sophisticated threats, coming from more organized and resourceful adversaries. Forrester's Enterprise And SMB Security Survey, North America And Europe, Q3 2009 reveals that "balance" will be the key challenge for CISOs in 2010: facilitating business opportunity amid a heightened risk environment and managing a growing portfolio of responsibilities while under continuing, though recovering, resource constraints.