Of course, as anyone will tell you, one of the main reasons for outsourcing is the financial benefits derived from it. But one must consider what the security risks are and whether they are worth the savings. The CIO (Chief Information Officer), Chief Security Officer and other officials concerned must always ensure that the firm or company is not exposing itself to unnecessary security risks in the process.
These officials should first take certain security issues into account. One must bear in mind that officials and employees not really from your firm are going to have access to your computer systems and to sensitive data. Think about how their activities will be monitored. Will one be able to ensure that all access to data can be restricted once a certain project has been completed?
[Read more →]

Ernst & Young’s Associate Director of Technology and Security Risk Services, Devendra Parulekar, has been quoted as saying, “Organizations are beginning to recognize that information security can deliver more than just protection for information.” while releasing the 10th Annual Global Information Security Survey report.
The survey had been conducted in the latter half of 2007 while interviewing 1,300 senior executives in over 50 countries. Of these India, with 114 respondents, emerged as the second largest contributor.
[Read more →]