Business Continuity, Infosecurity, Policy & Planning

Joined-up approach for corporate security urged

By Jianggan Li | 2 March 2009

PricewaterhouseCoopers (PwC) has urged companies to align more closely IT security with other corporate security functions, after conducting a study of 10 FTSE companies with the aim of discovering ‘what a 21st century security function looks like’.

View photos

Related Articles

• India reviews coastal security
• NZ PM cautious about airport security upgrade
• Canada responds to airport security breach
• Lahore attack prompts security hike

Related Categories

• BUSINESS CONTINUITY
• INFOSECURITY
• POLICY & PLANNING

From this Section

• NEWS

The consultancy firm also recommends an individual role in co-ordinating and monitoring converged enterprise risk.

The results highlight a lack of integration between IT security, and areas of corporate security tasked with fighting counterfeiting, terrorism, bribery, intellectual property infringement and other risks.

Steve Wright, security and business continuity management leader at PwC, says that in today’s climate, criminals are likely to target several vulnerabilities in different vectors to achieve their goals, necessitating “a more joined-up approach” from security and risk teams.

“There is a silo mentality, in that we commonly find [these problems] dealt with by different heads of department,” comments Wright. “This is not necessarily wrong. But it could be improved by taking a holistic view and looking at risk over different points.”

He adds that security is an area in which companies could make significant efficiency gains during a recession.

Wright also says that the combined corporate and IT security function should be focused on business protection through understanding information assets, applying a thorough risk-assessment methodology, preparing for business continuity and ensuring adequate resilience.