'Information Security Management' is Top Tech Issue for 7th Year in a Row

American Institute of Certified Public Accountants' technology survey shows protecting data is the highest priority.

by / January 13, 2009

For the seventh consecutive year, "Information Security Management" is the most important issue affecting IT strategy, investment and implementation in the coming 12 to 18 months for businesses, according to the American Institute of Certified Public Accountants' 20th Annual Top Technology Initiatives Survey.

"The survey showed conclusively that protecting the data an organization is entrusted to manage is of the upmost importance," said David M. Cieslak, CPA, CITP, GSEC, co-chairman of the Top Technology Initiatives Task Force and principal of Arxis Technology. "Much of the data collected is personal information, so it is critical that organizations proactively prevent its loss or misuse."

Underscoring the importance of security, "Privacy Management" moved up the list from fourth to second place in this year's survey. Over the past year, a proliferation of state-sponsored legislation was passed to protect personal identification information. Organizations are subject to fines if they are found guilty of not mitigating the vulnerabilities to access of this data.

Increased concern over data protection also led respondents to cite "Secure Data File Storage, Transmission, and Exchange" as the third most-important issue in the upcoming year, the first time this has appeared on the list.

"Training and Competency" rose from number 13 to 6, as managers seek to train staff in order to fully integrate new technologies into their organizations for maximum efficiency and to help boost employee confidence and retain staff.

The Top 10 most important technology initiatives for 2009 are as follows:

1. Information Security Management
2. Privacy Management
3. Secure Data File Storage, Transmission and Exchange
4. Business Process Improvement, Workflow, and Process Exceptions Alerts
5. Mobile and Remote Computing
6. Training and Competency
7. Identity and Access Management
8. Improved Application and Data Integration
9. Document, Forms and Content Knowledge Management
10. Electronic Data Retention Strategy

A complete list of definitions and additional information is available at the AICPA Web site.

Platforms & Programs