eWeek Security Watch
Advertisement
Advertisement
September 29, 2009 3:05 PM

Does IT Outsourcing Pose Security Risks?



Companies thinking about outsourcing IT jobs may want to take a close look at how that will impact security.

That is the message of a new report commissioned by VanDyke Software and carried out by Amplitude Research. In their annual survey of network administrators and IT professionals, researchers discovered that organizations that outsourced tech jobs were more likely to report network intrusions. Sixty-one percent of the 350 respondents whose organizations outsource IT jobs experienced an unauthorized intrusion in the last two years. That number compares with 35 percent of those whose companies don't outsource.

The findings apparently fit in with most of the respondents' attitudes, as 69 percent said they felt outsourcing had a negative impact on security. Of the others, just 9 percent said the impact was positive, while 22 percent said the impact was zero.

"The survey results indicate there is sentiment, as well as initial data, that suggests outsourcing tech jobs offshore is a matter that needs greater scrutiny in the area of network security," Jeff Van Dyke, president and founder of VanDyke Software, said in a statement Sept. 29.

Missing from the survey is any information about what could have caused the disparity in incidents between those that outsource and those that don't -- such as information about the specific intrusions or security practices of those organizations. But if the statistics are to be taken at face value, Van Dyke's point about companies needing to carefully consider the impact outsourcing has on their overall security posture is valid.

Here are some other interesting stats from the report:

- The proportion of organizations reporting unauthorized intrusions of their endpoints, servers or networks within the past two years stood at 42 percent. Among enterprises (companies with 5,000 or more employees) there was a drop in the percentage reporting intrusions compared to 2008 from 56 percent to 41 percent. Businesses of other sizes saw no significant change.

- Forty-nine percent of the respondents in 2009 devoted 25 percent or more of their average work week to monitoring, maintaining or updating their user machines, office network or servers. This compared to 58 percent of respondents in 2008.

- Ninety-five percent have anti-virus installed on their office network -- typically on both servers and user machines. The majority reported propagating virus definitions/signature files across the IT assets automatically.

Posted by Brian Prince on September 29, 2009 3:05 PM

| Comments (4) | del.icio.us | digg.com | Trackback | Post a Comment
TrackBack

TrackBack

http://securitywatch.eweek.com/cgi-bin/mte/mt-tb.cgi/17980

Comments (4)

Philippine Outsourcing :

The BPO sector will continue rapid growth as the global economy recovers from recession. However, businesses will become increasingly sophisticated at evaluating risks associated with IT offshoring. A combination of international regulations and industry certification programs should mitigate the biggest risks, namely intellectual property theft and data security.

Charlie

Posted by Philippine Outsourcing | May 17, 2010 1:32 AM

Contact Center Philippines :

Outsourcing of business functions is a growing trend that helps firms cut costs, it also brings potential security risks -- particularly when outsourcing involves entities owned and operated abroad. Corporate leaders need to be on guard and know who their business partners are and what security measures they have in place to protect against loss, whether through unintended leakage of proprietary business information, deliberate thefts of intellectual property, or outright economic espionage.

Posted by Contact Center Philippines | June 16, 2010 1:10 AM

Telemarketing :

Well, outsourcing IT does pose a security risk for companies. However, outsourcing this sector is essentially the same as anything else that involves security - know your potential and limits, consider the margin of loss, the benefits and evaluating the risks.

Posted by Telemarketing | September 13, 2010 1:41 PM

Telemarketing Services :

Thank you for pulling out the interesting facts from the report. As in any industry, there are security risks. Companies must make the effort and take extra steps for security purposes.

Posted by Telemarketing Services | September 24, 2010 12:07 AM

Post a Comment

 
 
RSS Syndication

Security News

Advertisement

TLD regulation

Adware

Android

Apple

Applications Whitelisting

AV tools

Backdoor

BlackBerry

Blacklisting

Blended attack

Botnet CnCs

Botnets

Browsers

CAG

China

Cisco

click fraud

Conficker

Corporate espionage

Cyber-war

Data Breach

Data Security

Data securityAdd category

Database security

DDoS

Disaster Planning

domain registration abuse

e-banking fraud

eBay

Enterprise security strategy

Ethical hacking

Exploits and Attacks

Facebook

File-sharing

Flaws

Google

Government standards

Hactivism

ID theft

Identity fraud

Identity Theft

iframe

Illegal pharmacies

Industry events

Infrastructure security

Internet regulation

Intrusion Detection/Prevention

iPhone

ISPs

Java

MAAWG

Malware

Malware toolkits

Mergers and Acquisitions

Messaging security

Microsoft

Microsoft Windows

Mobile malware

multimedia

NIST

Online malware

Open Source

Oracle

Patches

Phishing and Fraud

PowerPoint

Privacy

Product Reviews

Products

Regulation

Risk Management

Rogue AV

Rootkits

RSA Security Conference

Russia

SaaS

SCADA

Search

SEO

SEO poisoning

Smartphone security

Social engineering

Social networking

Spam

SQL injection

Trojan attacks

Twitter

video games

Virus and Spyware

Vulnerability Research

Web 2.0

Windows 7

YouTube

Advertisement
Security Watch     Contact Us | Advertise | Site Map
eWEEK Quick LInks

Security:
Enterprise Security
Network Security
Infrastructure Security
How To: Data
IT Security News
Cheap Hack Blog
Security Watch Blog
Storage:
Data Storage
Cloud Storage
Storage Virtualization
Network Access Storage
Storage Reviews
Data Storage News
How To: Storage
Storage Station Blog
Computing:
Apple OSX
Linux Systems
Windows Vista
Managed Print Services
Cloud Computing
PC Reviews
Microsoft Watch Blog
Apple Watch Blog
Google Watch Blog
Communications:
VoIP Solutions
Wireless Technology
Messaging Software
Web Services
Mobile Applications
Wireless News
Mobile Reviews
Apps & Development:
Application Development
SAAS
Search Engines
Database Software
Web 2.0
IT Project Management
Emerging Tech Blog
CIO Insight Blogs
CIOs

Vertical Markets:
Federal Government IT
Health Care IT
Finance IT
Mid-Market
Channel Partners
Careers Blog
Value Added Resellers
More eWeek Links:
Tech Knowledge Center
Tech Newsletters
Tech RSS Feeds
White Papers
Tech Podcasts
Tech Videos
Green IT
eWeek Magazine Subscriptions
Enterprise Websites:
ZDE Home
Baseline
Channel Insider
CIO Insight
eSeminars
eWeek Mid-Market
Publish Online
Web Buyers Guide
Developer Websites:
Dev Shed
DeveloperShed
ASP Free
MS DevSource
SEO Chat
Codewalkers
Tutorialized
Scripts.com
Dev Mechanic
Dev Articles
Web Hosters
Dev Hardware
Technology Websites:
Device Forge
Desktop Linux
Linux Devices
Windows for Devices
iGrep Search Engine
PDF Zone
Linux Watch

Use of this site is governed by our Terms of Use and Privacy Policy
Copyright ©1996-2008 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt, and eWeek Security Watch are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.
eWeek is your best source for the latest Technology News.
Hosted by Hostway.

Ziff Davis Enterprise