ISF predicts increasing cyber security regulation

Organisations will need to adapt their information security policies

The Information Security Forum (ISF) has predicted that increasing government regulation will force enterprises to adapt their information security procedures over the next two years.

In its Threat Horizon 2013 report, ISF, which works to clarify key issues in information security, said governments are increasingly concerned about the threat of cyber attack.

"As governments gain a better understanding of unexploited cyber-opportunities - and become aware of the vulnerabilities they face in cyberspace - they are stepping up the protection of critical national infrastructure," it said.

The ISF recommends that CIOs ensure that contingency arrangements are "sufficient and practised for the eventuality of national or internal infrastructure disruption".

The organisation also sees difficulties from increased cloud adoption.

"Organisations will look to cloud computing, smart-sourcing and other flexible business solutions to increase agility and optimise the use of assets. Existing infrastructure that can't be outsourced will need to be integrated with new pay-per-usage models. This is a complex challenge, which will be compounded by the continual introduction of new technologies and the need to adapt."

It recommends that businesses ensure security is addressed at the start of every business initiative, and that risks are understood and communicated up front.