Downtime is more worrying than security threats, finds Symantec survey.

Symantec's IT manager survey finds that concerns are shifting in the enterprise

A new report by Symantec Global Services, ‘IT Risk Management Report 2: Myths and Realities,’ has found that the threat of company downtime is more important than security, in respect of IT risk.

The report, authored by Symantec’s chief strategy officer Greg Hughes, was compiled after an analysis of 400 in-depth interviews of IT managers worldwide. Hughes said that managers were increasingly concerned about the availability of their systems, as opposed to external threats. “Availability Risk concerns inaccessibility of information or applications during a systems outage and recovery. Performance risk concerns reduce business productivity or value when teams, systems or applications underperform.”

Participants in the study gave a critical or serious rating of 78 percent to availability risk, while 70 per cent said security risk, 68 per cent performance risk, and 63 per cent compliance risk.

Hughes added, “The data also support two important conclusions. First, a majority of participants rates every area of IT Risk either ‘Critical’ or ‘Serious’. Second, only 15 percentage points separate the top- and bottom-rated categories. IT Professionals are adopting a more balanced view of IT risks.”

Hughes said that the survey debunked four myths: that IT risk management is focused only on IT security; that IT risk management is project driven; that technology alone can manage IT risk; and that IT risk management has already become a formal discipline.