The Alliance for Enterprise Security Risk Management: A partnership of the three leading international security organizations, formed to address issues surrounding the convergence of traditional and logical security.

Results of Security Convergence Study Revealed in Webcast from Security Alliance

Rolling Meadows, IL, USA (15 December 2005) — A webcast discussing results from a new study, “Security Convergence: The State of the Enterprise,” will be available starting Thursday, 15 December 2005, at http://viavid.net/dce.aspx?sid=00002BE5. The webcast is free and will remain available until 15 December 2006.

The study was commissioned by an alliance of three leading international security organizations — ASIS International (ASIS), Information Systems Audit and Control Association (ISACA) and Information Systems Security Association (ISSA).

According to the report, the dramatic increase and financial toll of threats and the soaring costs to mitigate their impact are helping drive the “convergence” or integration of traditional and information security functions in a growing number of U.S.-based global companies. The study, conducted by Booz Allen Hamilton, surveyed chief security officers (CSO), chief information security officers (CISO) and other security professionals representing 14 companies with revenues from US $1 billion to more than US $100 billion.

The results of the study reveal that security convergence impacts the business as a whole. The current state of security is a disconnected focus on individual functions and business elements, and the trend is toward a focus on the entire business. Imperatives driving this conversion are:

  • The ever-expanding enterprise
  • Value migration from physical- to information-based assets
  • New protective technologies impact several functional areas
  • New compliance and regulatory regimes
  • Continuing pressure to reduce costs

The report also finds that, by necessity, security functions within organizations will need to focus on cross-functional, business-driven initiatives. There will be an increasing emphasis on enterprise risk at the business level, and security councils will be formed as security becomes an effective value-added function.

About ASIS
ASIS International (ASIS) (www.asisonline.org) is the preeminent organization for security professionals, with more than 33,000 members worldwide. Founded in 1955, ASIS is dedicated to increasing the effectiveness and productivity of security professionals by developing educational programs and materials that address broad security interests, such as the ASIS Annual Seminar and Exhibits, as well as specific security topics. In addition, ASIS advocates the role and value of the security management profession to business, the media, government entities and the public. By providing members and the security community with access to a full range of programs and services, and by publishing the industry’s number one magazine — Security Management — ASIS leads the way for advanced and improved security performance.

About ISACA
With more than 50,000 members who live and work in more than 140 countries, the Information Systems Audit and Control Association® (ISACA®) (www.isaca.org) is a recognized worldwide leader in IT governance, control, security and assurance. Founded in 1969, ISACA sponsors international conferences, publishes the Information Systems Control Journal®, develops international information systems auditing and control standards, and administers the globally respected Certified Information Systems Auditor™ (CISA®) designation, earned by more than 44,000 professionals since inception, and the Certified Information Security Manager® (CISM®) designation, a groundbreaking credential earned by 5,500 professionals.

About ISSA
The Information Systems Security Association (ISSA) (www.issa.org), with more than 13,000 individual members and 97 chapters around the world, is the largest international, not-for-profit association for information security professionals. It provides educational forums, information resources and peer interaction opportunities to enhance the knowledge, skill and professional growth of its members. ISSA members are consistently recognized as experts on critical issues in the area of information security, and the Association is viewed as an important resource for small businesses, global enterprises and government organizations alike. Working closely with other industry organizations such as (ISC)2, ASIS and ISACA, and leading worldwide initiatives like the GAISP and the recommended CISO education curriculum, ISSA is focused on providing leadership and maintaining its role as The Global Voice of Information Security.

Media Contacts:
For ASIS: Chris Flynn, cflynn@asisonline.org, 703.518.1466
For ISACA: Kristen Bertholomey, kbertholomey@isaca.org, 847.590.7455
For ISSA: Anne Rogers, arogers@wm.com, 713.287.2488

 

 

 

 

Copyright © AESRM 2008, All Rights Reserved.