SINGAPORE, 10 JUNE 2011 – Governments in the Asia Pacific have poor policies when it comes to security despite rising security threats and costly risks of data security breaches, says market intelligence firm IDC.
The IDC Government Insights study revealed that 17.8 per cent of public sector agencies in the Asia Pacific actively choose to freeze investments in information security or decide not to secure certain public information in order to meet their IT budgets.
The study further suggested that half of the respondents are not proactive in preparing for the threats brought on by new technologies.
IDC also observed that there are very few regulatory requirements in the region for reporting security breaches. The Asia Pacific excluding Japan (APEJ) public sector is primarily reacting to external factors that demand its efforts in the area of information security rather than adopting a strategic approach.
“Many public sector agencies appear to lack the tools or processes for basic monitoring of security events, their frequency, nature or source. This is despite the rising security threats brought about by employees connected to the governmental networks using their personal mobile devices. Employees follow trends feverishly and these individuals mix corporate and personal information unhindered by the much needed restrictions,” said the research manager for IDC Government Insights, Frank Levering.
“It is critical to have an information security strategy that is not only well-documented and implemented, but also budgeted for and kept up-to-date. The dynamic nature of this recommended approach requires the endorsement and involvement of the highest management levels. Only a proactive focus to achieve continuous improvement will ensure that threats or risks do not find opportunities to manifest in an organisation,” Levering advised.
Sign up for Computerworld eNewsletters.