Cost, Complexity and Risk: Security
for the Enterprise of the Future
October 2008
Page 2
Cost, Complexity and Risk: Security for the Enterprise of the Future
Introduction
According to the IBM landmark Global CEO Study, “The Enterprise of the
Future,”1 Chief Executive Officers and other senior business leaders foresee
an exciting new business environment that will be energized and driven by
change—including new business designs, disruptive innovation and continuing
economic globalization. As a CIO, you are responsible for transforming IT
applications, services and infrastructures into nimble, automated environments
that will enable your organization to exploit the opportunities of an
increasingly dynamic marketplace.
Like many CIOs, you may feel that IT security and compliance could be
significant roadblocks to this vision. After all, you’re in a position to see how
forces of technological change are already driving the spiraling cost and
complexity of security and compliance. Change could easily be regarded as
the antithesis of security, yet the future is all about embracing even greater
change. Questions such as, “How will you ever get full control over risk
management and business continuity?” and “How will you improve your
adaptability and effectively balance risk, complexity and cost when security
and compliance continue to be moving targets?” become top of mind.
Chances are, you wish the whole security and compliance issue would simply
go away.
For too long, security technology has been developed and deployed apart
from the mainstream of IT infrastructures, applications and processes—with
little concern from vendors as to how it should be integrated into that
mainstream, or how it adds complexity to business processes. It’s no wonder
that security and compliance costs continue to grow at a rate three times
faster than that of IT budgets.
Contents
3
The trend: forces of
change make IT
security/compliance costly
and complex
6
The CIO’s greatest needs
9 Meeting security
challenges for the
enterprise of the futu