Firms 'must do better' On IT Security
"If only 27 percent of companies actually have a policy on this issue then the challenge of engaging the other 73 percent of company boards is a real and important one," said Timms. "This basic failure to set objectives and goals fed through into the survey's findings of a host of management shortfalls -- under-investment, lack of analysis of investment, lack of appropriate personnel policies, security processes and technical security," he added.
Timms was speaking in London at the Information Assurance Advisory Council's third annual symposium, where he also explained that the government is promoting best practice standards to address the issue.
The link for this article located at ZDNet is no longer available.