In the summer of 2014, CA Technologies agreed to sponsor a research paper that would allow ITWC to focus on the IT security issues facing medium- to small-sized companies in Canada. Given that there are already a lot of players doing security surveys and reports, we wanted to take a different approach and get into a deeper discussion.
Over the next few weeks, a series of one-on-one interviews were conducted with participants from across Canada probing into their experiences and the impact of security issues on their organizations. Key areas focused on included identity and access management, cloud and SaaS, API, mobility, compliance, budgets and future planning and even addressed customer service and reputation management.
The outcomes of those discussions make for a picture of vigilant, yet constantly shifting IT departments. Recognizing that threats are not going to go away, many have adopted approaches that allow them to be prepared, while ensuring flexibility and availability to users. They also recognize that data requires protection, not devices; that threats are internal and external in nature, and that employee education is key to minimizing risks. They are in general agreement as to what to protect and how, where the challenges lie, and what needs to happen in order to better address today’s and tomorrow’s security concerns.