Data breaches and privacy regulations low on CIO agenda, report says

CIOs rank corporate data breaches and privacy...

CIOs rank corporate data breaches and privacy regulation only ninth in their top ten IT risks to business, according to a survey by Ernst and Young.

That is despite ranking information security as the top concern in the survey of more than 80 CIOs and internal auditors at large businesses in the UK, Ireland and Sweden.

Erol Mustafa, head of IT internal audit services at Ernst and Young, said the gap was probably due to the fact that privacy is a much broader issue than IT security.

He said privacy was made up of many different parts such as appropriate policies, training, and awareness that did not normally fall under the CIO.

Mustafa said internal auditors had a role to play in working with IT to ensure data privacy was properly addressed by including it in overall risk management strategies.

He said companies also had to pay attention to data privacy requirements when negotiating outsourcing deals because they often failed to meet standards.



Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.