Increasing unease over the security of outsourced IT is leading CIOs to consider bringing management-related technologies in-house, reports Ovum. Ovum’s latest Technology Trends survey found organisations are contemplating reducing the outsourcing of security and other IT management functions.
Rhonda Ascierto, senior analyst at Ovum, says the planned reduction in IT security outsourcing is one of the most striking trends in the survey. Ovum says it surveyed more than 500 CIOs, of which only 7 percent said they were considering outsourcing IT security over the next two years, down from 18 percent.
“The main reason for this shift away from IT security outsourcing is most likely a lack of confidence,” says Ascierto in a press statement. “Organisations are now more subject to compliance considerations in the form of both formal external and internal policy-driven requirements, particularly in the wake of the US banking controversies and other financial scandals.”
Ovum says some organisations may find it difficult to obtain a measurable security metric from an outsourced provider because security is often reported only after negative security occurrences. If security is not breached then there is nothing to report.
“The reversal of outsourcing security is also likely to be due to some organisations grappling for more control over their IT operations, of which security is a central aspect”, says Ascierto.
Ovum says that contractual clauses from outsourcers often do not give the quantitative assurance that organisations need or desire. This may be viewed as a problem with IT outsourcing in general, rather than IT security specifically, since any failings impact the whole business while the contract is limited to the aspects of the IT operation that are outsourced.
Ovum believes this may have contributed to growing unease about the security of outsourced IT in general, with IT security outsourcing simply being the first part of the spectrum to feel this change.
Join the CIO New Zealand group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.