Bloor Research Report: Practices For Enhancing Data Security – A Survey of Organisations in the UK and US
by Fran Howarth, Senior Analyst
This report is based on a survey of 200 organisations in the UK and the US, all of which have more than 1,000 employees. Respondents were interviewed at the end of 2014 regarding data security in their organisations. The respondents were split across the financial services, manufacturing and commercial sectors, with the latter group comprising retailers, wholesalers and other commercial services.
- Data security is seen as a serious or critical concern by more than half of organisations and many report that their concerns are rising
- Although security policies are highly favoured for enforcing data security, investment in technology controls is strong
- Data classification is seen as a foundational tool for data security and information governance
- Data classification technology tools are used to enforce policies by more than half of organisations
- Mobile security is a growing concern, as reflected in the fact that only low levels of BYOD were found
Effective information governance is essential for data security and needs to be implemented across the entire lifecycle of information, from creation through communication to storage. Data classification policies and tools allow all data to be classified according to its sensitivity and importance to the organisation, with classifications following the data as its flows through the network in order to safeguard all sensitive information from falling into the wrong hands.