Home > Security

Computerworld - Security Statistics you'll find on this page:

Risks of Doing E-Business

Who does the best job of protecting data on computers?

Virus Alert

Top Security Job Markets

---

RISKS OF DOING E-BUSINESS

The threat from computer crimes and other online security breaches has barely slowed, never mind stopped, according to a recent survey of 538 security professionals in U.S. corporations that was conducted by the Computer Security Institute and the FBI's Computer Intrusion Squad. Reported breaches in the past six months 85% Reported financial losses in the past six months 64% Could quantify financial losses 35%

TOTAL QUANTIFIABLE LOSSES Year 2000 (265,589,940) Year 2001 (projected) (377,828,700)

TYPES OF QUANIFIABLE LOSS Theft of proprietary information $151.2M Fraud $92.9M

ATTACKS REPORTED TO LAW ENFORCEMENT Year 2000 25% Year 2001 (projected) 36%

ATTACKS ON THE RISE Source: Computer Security Institute/FBI Computer Intrusion Squad, Washington; survey of 538 IT security professionals

NET INTRUSIONS COST BILLIONS Though the cost of intrusions is high, many companies still haven't devoted many resources to protecting themselves. Total annual cost of online security breaches to corporations $15B Percentage of companies that have yet to implement adequate security 30% Percentage of companies that spend 5% or less of their IT budget on security for their networks 50% Source: DataMonitor PLC, New York

[BACK TO TOP]

---

Who does the best job of protecting data on computers?

Source: Information Technology Association of America, Arlington, Va. Only 0.4% of a company's revenue, on average, is dedicated to information security in the U.S. By 2011, however, that figure will accelerate tenfold to 4% of revenue for U.S. companies, according to Gartner Inc.'s total cost of ownership model for information security.

U.S. INCIDENT RESPONSE SERVICES EXPENDITURES BY SERVICE ACTIVITY Key findings include the fact that services will experience growth respective to the number of cyberattacks, and security breaches and individual service activity spending over time will increase or decrease at varying rates, according to incident severity and frequency. 1999 2000 2001 2002 Cyberforensics $14M $24M $36M $45M Incident-response services $74M $94M $129M $152M Total $88M $118M $165M $197M Source: IDC,Framingham, Mass., 2001

[BACK TO TOP]

---

VIRUS ALERT

Downtime From Viruses Judging by server downtime, which increased substantially from 1999, viruses are starting to take their toll on network performance: 1999 2000 Servers down for more than one hour 9% 64% File problems from viruses 50% 66% Companies with data loss 31% 40% Source: ICSA Labs, Carlisle, Pa.; ICSA LABS 6th Annual Computer Virus Prevalence Survey 2000

Top 10 Viruses The most active viruses in the past four weeks, according to MessageLabs Ltd., a U.K.-based virus-detection agency: Number of Virus Detections in the Past Four Weeks

E-Mail Flu Season The following graph plots the ratio of viruses to e-mail during the past 12 months. You can see that the ratio varies from one virus in every 1,400 e-mails in September 2000 to one in every 400 in May 2001. Ratio of Viruses to E-mail From July '00 to June '01 Source: Messagelabs Ltd., Gloucester, U.K.

[BACK TO TOP]

---

TOP SECURITY JOB MARKETS

Where's the best pay for security pros? Total compensation amounts for information security professionals, by region (2000). REGION STATES COMPENSATION South Atlantic D.C., Del., Fla., Ga., Md., N.C., S.C., Va., W.Va. $82,800 East South Central Ala., Miss., Ky., Tenn. $75,500 East North Central Ill., Ind., Mich., Ohio, Wis. $71,300 National average $66,300 Pacific Alaska, Calif., Hawaii, Ore., Wash. $64,100 Mountain Ariz., Colo., Idaho, Mont., N.M., Nev., Utah, Wyo. $61,300 New England Conn., Mass., Maine, N.H., R.I., Vt. $58,900 West South Central Ark., La., Okla., Texas $58,400 Middle Atlantic N.J., N.Y., Pa. $58,400 West North Central Iowa, Kan., Minn., Mo., Neb., N.D., S.D. $55,400 Source: Computerworld's 2000 Annual Salary Survey, published Sept. 4

Cashing-in in consulting Top-paying industries for information security professionals. RANK INDUSTRY COMPENSATION 1 Business services, consulting $76,400 2 Business services, information technology $72,500 3 Government (state and federal) $63,000 National average $66,300

Security at a premium The salary premiums (additional compensation above base salary) paid to IT professionals with security skills. RANK TYPE OF TECHNOLOGY SKILL PREMIUM 1 Network development 20% 2 Security 18% 3 E-commerce application development 18% 4 Directories 17.5% 5 Internet application development 17% 6 Enterprise resource planning 17% 7 Data warehousing/data mining 16% 8 Web server administration 16% 9 Customer relationship management 15.5% 10 Online transaction processing 14.5% Source: Computerworld's 2000 Annual Skills Survey, published Dec. 4

[BACK TO TOP]

Read more about Security in Computerworld's Security Topic Center.