The media is moving beyond trumpeting the fact that most IT data isn't secure and now is trying to determine why corporations and the government have not paid as much attention to this area. God knows it's not a lack of products that are aimed at this market. Even now, companies such as Cisco Systems Inc. and EMC Corp. are buying up smaller vendors to help manage, monitor and secure data from threats and security focused startups continue to receive funding almost weekly.

So this article from E-Commerce Times takes a look at some survey data put forth by Internet Research Group that says much of the reason behind our woeful lack of security when it comes to data is that IT administrators were naively waiting for a single product that would take care of everything for them. Sadly, no one has come up with this yet, although the consolidators are trying.

And what to do about the still lackluster state of security? Well, Gartner estimates those who already have a mature security infrastructure can spend about 4% of their IT budgets each year on maintaining and upgrading security, while those who are not yet secure or who are in highly regulated industries (about 90% of the businesses out there), will have to suck it up and spend about 8% of their IT budgets on security. And since there's no one-stop shop for all an organization's security needs, that 8% is going to have to include some serious integration costs. Maybe it is smarter to wait until the big vendors finish buying everyone up. — Stacey Higginbotham

Go to story from E-Commerce Times