For the past six years Telus and the University of Toronto’s Rotman School of Management have collaborated on an IT Security Study of Canadian organizations. The 2014 report tries to find links between organizations following best IT security practices and their success in mitigating risk. But what does it mean to be what they call a security responsible enterprise? They follow these seven steps. See if your organization qualifies. Images from Shutterstock.
They monitor and/or have rigorous procedures to act on new threat information
Understand the security drivers impacting their business
Conduct regular security awareness training for employees
Involve security early and throughout the development of new infrastructure/systems
Communicate social media policies to their employees
Have or execute on a comprehensive mobile security strategy
Conduct enterprise mobility security testing and Threat Risk Assessments (TRA)