London, 22 March 2016: Networking Plus Magazine—According to the Institute of Information Security Professionals (IISP), information security is not keeping pace with growing risk.
Following a survey of more than 2,500 members, the institute found that over two-thirds had increased their information security budgets, while a further 15 percent said that they had stayed the same.
While these are encouraging figures, the IISP states they must be examined alongside increasing risk.
The poll also revealed that 60 percent of respondents felt budgets were still not keeping pace with the rise in threat levels. Only seven percent reported that they were rising faster than the level of threat.
Institute director Piers Wilson believes security is often seen as a supporting function or an overhead during times of financial pressure or instability, such as recent years.
“Security budgets are hard won because they are about protection against future issues, so they are a good indication of the state of risk awareness in the wider business community,” says Wilson. “While it is good news that businesses are increasing investment, it is clear that spending on security is still not at a level that matches the changing threat landscape.”
The survey also found that there is still a skills shortage in recruitment, but the problem doesn’t just lie in the number of people. Respondents point to a shortfall in skills and experience, making staff training, development and retention crucial to the industry's future.
The IISP is a not-for-profit organisation with over 2,500 members working in security across various industries and roles. The institute claims the results of its survey provide an accurate snapshot of the UK's cyber security landscape from those working on the frontline.