Security Secrets of IT Outsourcing

As the IT outsourcing market grows, so do the security risks. What can you do to decrease the threat?

1 2 Page 2
Page 2 of 2

You may find that they’re actually doing a better job of it than you were doing inside, but you still have to get a handle on it because it’s not something that you just say, “Well, I trust that they’re going to understand.” They can’t understand your processes; they can’t understand what your business value is, so you need to really help them understand. And understand it first yourself as you’re outsourcing whatever process it is that you’re putting out there.

You also need to specifically assign somebody within your organization to be the liaison with the vendor, to be the point person, whether it’s the accountability person or the one that’s checking the audit logs, or just talking to the outsourcer periodically to make sure that things are okay. The idea that you’re going to just wipe out all internal headcount associated with these processes is a myth. You still need people to work with the outsourcer to make sure that things work smoothly.

Associate Online Editor Diann Daniel can be reached at ddaniel@cxo.com.

More information:

Copyright © 2007 IDG Communications, Inc.

1 2 Page 2
Page 2 of 2
7 hot cybersecurity trends (and 2 going cold)