Financial incentives do more for security than regulation: McAfee CTO
- 30 January, 2013 14:54
McAfee CTO Michael Fey.
A US security expert has applauded the Australian federal government’s approach to improving cyber security but suggested that businesses may need a financial carrot to bring their systems in line.
Speaking to CIO Australia, McAfee chief technology officer Michael Fey said the government should be commended for setting aside $1.46 billion in funding as opposed to “just talking” about improving security.
“With an investment like that you catch people’s attention and they start thinking about security from the very start rather than taking a reactive approach,” he said.
However, businesses around the world are still lagging behind with information security and financial incentives could be more beneficial than imposing more regulation.
“Our personal information resides in all of these businesses and regulation only goes so far,” he said. "We’re better off offering incentives to those businesses to take this subject seriously and evolve security with them.”
According to Fey, financial incentives could also change the mindset of CEOs or CFOs who view information security as a cost.
“The reality with critical infrastructure and financial organisations is they have to take security seriously. When they do that, it should be a positive experience — not one that diminishes their profits,” he said.
While Fey is not a fan of security regulation, he disagreed with comments made by World Wide Web inventor Sir Tim Berners-Lee that Australia’s proposed data retention laws are a "really bad idea".
Speaking at a CSIRO event in Sydney this week, Berners-Lee said that while it was important for countries to be able to defend themselves from cyber attacks, there were inherent dangers with “snooping” on people.
“I don’t believe that cyber security means loss of rights beaus it guarantees that we are free to operate and exchange ideas as well as protect our intellectual property [IP] without giving up our Internet privileges,” Fey said.
“It’s really unfortunate for the cause that cyber security and human rights are getting linked together.”
Follow Hamish Barwick on Twitter: @HamishBarwick
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Larry Page wants to see your medical records
Dual-Persona Smartphones Not a BYOD Panacea
After two-year hiatus, EFF accepts bitcoin donations again
CIOs struggle to deliver timely mobile business apps: survey
Spiceworks' free management software gets integrated MDM
How Web Security Improves Productivity and Compliance
In this white paper, we will look at how secure web gateways, one type of information security technology, can provide benefits to many departments within any business or government agency. Download now.
Agentless Security for Virtual Environments
Virtualised datacentres, desktops, and cloud computing should be secured by the same strong protection technologies as physical machines. However, traditional agent-based solutions that are not architected for virtualisation can result in a number of significant operational security issues. Find out more about the first agentless security platform solution.
ESG Whitepaper: Integrated Computing Platform Survey
Data centres, servers, storage and more are being combined for simplified management and cost savings. In this survey, ESG looks at the current and future trends surrounding today’s integrated computing solutions. Download to find out how organisations are more likely to see commit IT budgets to the purchase of integrated solutions. Read more.