Information security critical to success

Nov 1, 1998 12:00 PM, TINA D'AVERSA-WILLIAMS

The information on computer networks is the lifeline of most organizations. As the Internet and private intranets begin to dominate business communication, companies must redouble efforts to secure access to enterprise information. Security concerns include the increased use of open systems, the placement of security hardware and software on the enterprise local area network (LAN) and the rapid integration of Internet technology into private networks. Now more than ever, security professionals are working together with information technology (IT) professionals to secure their organizations, and the line between the two groups will continue to blur. A recent two-part series in this magazine, called "Securing the network," instructed security professionals on how to build partnerships with IT professionals. (The articles appeared in the September and October issues. If you missed them, they are available on our web site, www.securitysolutions.com.) Who decides on integrated networks and how to secure them? Security directors, facility managers and owners and MIS/network directors, according to a September 1998 research study conducted by Access Control & Security Systems Integration. More than 35 percent of physical security managers/directors are responsible for information security, and interviews with end-users confirm this number is growing. The same technology that provides networking capabilities also creates the need for more complex security. IT and security professionals must work together to implement safeguards such as access control, firewalls, authentication, encryption, monitoring, detection and response. Since attacks are also launched internally, vulnerability does not end with external access control. Technology is available to safeguard internal systems while allowing protected access through external systems and Internet gateways. However, security is only as good as its implementation. Security has historically been implemented separately on the physical security and electronic information levels. Technology now allows for integrated enterprise-wide solutions. In many cases, physical security hardware such as surveillance and electronic access control operate off the enterprise network, controlled by network software instead of a stand-alone LAN. Proper planning of the systems is paramount to success. Critical in the planning of these integrated enterprise systems are allowance for backup systems, 24-hour monitoring, routine maintenance, clean power and contingency plans in the case of security breaches or system glitches such as the year 2000 date change. Physical security professionals should educate MIS and network professionals on the importance of security, leaving no hole unprotected. As strategic partners of end-user organizations, physical security equipment manufacturers and security system integrators are poised to develop integrated products that secure the entire enterprise. Working together, security and IT professionals will ensure the success of business communication.Security systems decision makers Our Security Systems Integration Trends 1998 study ranks the influence of those who decide on integrated systems. MIS directors/network administrators ranked fourth behind security directors, facility managers and presidents/owners. Security directors --- 66.8% ---Facility managers ---47.6% --Presidents/owners --- 35.7%-- MIS directors/network administrators-18.1% Design engineers ---- 15.3%---Outside consultants ---14.6%

Dealers --- 12.3% -- Systems integrators --- 12.3%

HR managers ---8.6%

Offering analysis and commentary on the security industry at large, our goal is to keep readers informed of the market growth and forward movement within the industry. The column is written by Tina D'Aversa-Williams, publisher of Access Control & Security Systems Integration, whose background includes work in market research and analysis.

Want to use this article? Click here for options!
© 2012 Penton Media Inc.

This month in Access Control

• Targeting The Customer
• Electronic Pedigrees
• One Hero Among Many
• Who? What? When? Where? Why?
• More from September's issue