Experience, trust and vigilance are the keys to security and compliance in outsourcing relationships, according to Russ Owen, president of global infrastructure services at Computer Sciences Corporation (CSC).
Speaking at a recent industry event dedicated to third-party-supplied services, Owen said that in an era of increased accountability, companies that outsourced some of their internal processes had to be more alert than ever in securing partners with deep expertise in IT security and compliance monitoring.
“The relationship between the company and outsourcer is more than a contract, it’s a marriage,” said Owen. “Trust is essential.”
Other crucial characteristics he cited included cultural compatibility, communication, openness and the flexibility to adapt to new circumstances as a result of business change and new compliance legislation.
Owen advised companies considering outsourcing to begin by getting a clear picture of the service provider’s experience and capabilities.
“You want excellent depth of systems management experience, lots of protective security layers and outstanding forensics capabilities,” he said. “A perimeter defence won’t save you. The approach must be multi-layered and regularly tested.”