Big Data policies lacking in NZ and Australian organisations
ISACA survey: Big Data policies lacking in New Zealand and Australian organizations
Lack of analytics capabilities of major concern to 28% of IT professionals in Australasia
Sydney, 22 November 2013 — Despite Big Data being an increasing area of focus, just 22% of New Zealand and Australian IT professionals surveyed in ISACA’s 2013 IT Risk/Reward Barometer are confident their enterprise has a policy regarding how it manages Big Data. Instead, almost two-thirds (61%) of respondents said their company has no policy around Big Data – and a further 17% of Australasian IT professionals were unsure.
Furthermore, just 5% of IT professionals say their enterprise is very prepared to ensure effective governance and privacy of Big Data. The majority, 45%, believe their organisation is “adequately prepared” and one-quarter (25%) said they are “not prepared at all.” Yet, information is currency and enterprises must not only protect and manage it, but also use it to drive business value.
Conducted by ISACA, a global association of 110,000 IT security, assurance, governance and risk professionals, the IT Risk/Reward Barometer asked 2,013 IT professionals about the risks and rewards of key trends, including Big Data. Big Data refers to the exponentially growing bytes of information that are created and collected in today’s digital world, often with datasets so large they require specialist software tools to capture, store, manage and analyse the data.
“While there has been an explosion in the data that organisations collect, the processes to manage, store and ensure the security of such information haven’t been as quick to keep up,” said Jo Stewart-Rattray, CISA, CISM, CGEIT, CRISC, FACS CP, Director of Information Security and IT Assurance at BRM Holdich and International Director of ISACA.
“Australasian IT professionals need to ask the tough questions to make certain their enterprises are taking the necessary measures to ensure that governance issues and privacy related concerns are properly addressed, and their systems are as secure as possible.”
When asked what the biggest challenge their enterprise is facing with regards to Big Data, the most-cited reason from respondents in New Zealand and Australia was a lack of analytics capabilities or skills (28%). The management and storage of large volumes of data came second, highlighted by 22% of respondents. Compliance requirements were noted by a further 14% of IT professionals.
To help enterprises meet these challenges, ISACA has released a new guide based on the COBIT 5 business framework, which helps enterprises govern and manage their information—COBIT 5: Enabling Information.
“Companies in all industries and all geographies are struggling with massive volumes of data and increasingly complex compliance requirements,” said Steven De Haes, chair of the publication’s development team. “When governance structures and processes are in place, enterprises are much more equipped to handle these challenges.
“At many enterprises, information is spread across multiple isolated silos, repeated in redundant copies scattered throughout the company, and underutilised,” De Haes continued. “ISACA’s goal is to help companies simplify information governance so that they are not only able to handle the information pouring in from a vast number of channels, but also derive value from it.”
Enabling Information also helps enterprises deal with
three key aspects of Big Data: fraud detection, IT
predictive analytics and marketing situational awareness. It
aims to provide readers with three key
1. A comprehensive information model that includes all aspects of information, including stakeholders, goals and good practices
2. Guidance on how to use COBIT 5 to address common information governance issues, such as Big Data and privacy concerns
3. A deep understanding of why information needs to be governed and managed, along with clear guidance on how to accomplish that
2013 IT Risk/Reward Barometer
The annual IT Risk/Reward Barometer is a global indicator of trust in information. Conducted by ISACA, a global association of 110,000 IT security, assurance, risk and governance professionals, the Barometer polls thousands of business and IT professionals and consumers worldwide to uncover attitudes and behaviours about essential technologies and information, and the trade-offs people make to balance risk and reward. The study is based on September 2013 online polling of 2,013 ISACA members from 110 countries. A total of 64 Australian and New Zealand IT professionals contributed to the survey. Additional online surveys were fielded by M/A/R/C Research among 1,216 consumers in the US, 1,001 consumers in India, and 1,001 consumers in Mexico. The US survey ran 16–18 September 2013, and the India and Mexico surveys ran 25 September–5 October 2013. At a 90 percent confidence level, the margin of error for each individual country sample is +/- 2.8 percent. A UK survey of 1,000 employed consumers was conducted by OnePoll on 2 October 2013 with a margin of error of +/- 3.9 percentage points at the 95 percent confidence level. To see the full results, visit http://www.isaca.org/risk-reward-barometer.
With more than 110,000 constituents in 180 countries, ISACA® (www.isaca.org) helps business and IT leaders maximise value and manage risk related to information and technology. Founded in 1969, the nonprofit, independent ISACA is an advocate for professionals involved in information security, assurance, risk management and governance. These professionals rely on ISACA as the trusted source for information and technology knowledge, community, standards and certification. The association, which has 200 chapters worldwide, advances and validates business-critical skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) credentials. ISACA also developed and continually updates COBIT®, a business framework that helps enterprises in all industries and geographies govern and manage their information and technology.
Participate in the ISACA
Knowledge Centre: www.isaca.org/knowledge-center
Follow ISACA on Twitter: https://twitter.com/ISACANews
Join ISACA on LinkedIn: ISACA (Official), http://linkd.in/ISACAOfficial
Like ISACA on Facebook: www.facebook.com/ISACAHQ