2014 TELUS-Rotman Security Study Introduces a "Security Responsible" Approach to Technology Innovation

2014 TELUS-Rotman Security Study Introduces a "Security Responsible" Approach 
to Technology Innovation 
Enterprises that follow best practices and adopt innovation in a
strategic and responsible manner have higher security satisfaction,
fewer breaches and improved risk management 
TORONTO, ONTARIO -- (Marketwired) -- 04/29/14 --  (TSX: T)(NYSE: TU)
- TELUS and the Rotman School of Management at The University of
Toronto today released the 2014 TELUS-Rotman Security Study. Now in
its sixth year, the annual survey tracks industry trends and
documents the state of IT security in Canada. The 2014 report focuses
on how enterprises can stay secure while making progressive
innovation decisions by taking a "security responsible" approach.  
Returning to a quantitative approach for this year's study, the
research team surveyed more than 400 Canadian security professionals
to get the pulse on trends it has been following since 2008. This
year's study also includes global perspectives on the data, trends
and analysis from key security thought leaders from companies
including Salesforce.com, British Telecom and Cylance Inc. 
"As we examined and analyzed the data, four key security best
practices came into view: a strong focus on risk management,
retaining the right skills and expertise within an organization,
effective policies and governance, and employee education," said Dr.
Walid Hejazi, professor of Business Economics, Rotman School of
Management. "As our thinking crystalized, the concept of 'security
responsible' emerged as the central theme of the research." 
To quantify the concept of security responsible, the research team
assigned a proprietary rating scale of zero to seven (with zero being
the least and seven being the most responsible). Regardless of
whether enterprises say 'yes' or 'no' to innovation, those that rate
higher on the security responsible scale experience more security
success in terms of: 

--  Greater satisfaction with their security postures (mean rating of 3.8
    vs. 3.2 out of 5) 
--  Fewer breaches (9.5 vs. 14.9 breaches, averaged during previous 12
--  Better risk management capability (mean rating of 3.6 vs. 1.5 out of 5) 

However, the greatest business benefits are realized by organizations
that say 'yes' to innovation in a security responsible manner;
creating an environment where security and innovation both thrive. 
"Canadian companies that embrace business-enabling innovations and
are 'security responsible' enjoy the best of both worlds," said
Hernan Barros, Director, Security Services, TELUS Security Solutions.
"By taking a security responsible approach, an organization can
realize productivity gains and cost savings through innovations like
'bring your own device,' social networking and cloud computing while
maintaining a high level of security success.  
Additionally, the report explores how security responsible
organizations are more successful in the areas of employee retention,
mobile security and dealing with advanced threats. The findings

--  Employee retention: organizations that adopt business-enabling
    innovations with a security responsible approach are more than three
    times more likely to have no difficulty retaining security staff; 
--  Mobile security: while only 37 per cent of Canadian organizations take a
    security responsible approach to mobile security, those that do report
    higher satisfaction with their security postures. 
--  Advanced threats: a security responsible approach to advanced threats
    (rigorous threat monitoring procedures) drives down breach numbers and
    improves satisfaction (70 per cent for those with rigorous monitoring
    versus 39.5 per cent for those who don't actively monitor). 

"The focus on 'security responsible' is really a call to action for
Canadian enterprises," continued Mr. Barros. "The data shows us that
executing on security in a responsible way delivers tangible benefits
in terms of security satisfaction, lower breach numbers and improved
risk management - all of which are key measures of security success.
It is possible for every organization to take action on these
findings by evaluating how security responsible they are and
identifying where they can improve." 
The report includes four key recommendations to help Canadian
enterprises become more security responsible: 

--  Focus on risk: compliance is essential but is also the bare minimum;
    being risk-focused means continuously assessing the environment and
    understanding how a security breach could impact brand and revenue. 
--  Retain the right skills: the best and brightest security professionals
    have high standards when it comes to what constitutes good security
    practices and will move on quickly from organizations that aren't
    security responsible enough. 
--  Focus on policy diligence: proven standards and procedures offer the
    governance needed for technology decisions, including the adoption of
    business-enabling innovations. 
--  Educate employees: employees play a crucial role in risk management, so
    it's important that they understand security policies, the rationale
    behind them and the pros/cons of compliance. 

Security leaders can find the detailed breakdown and analysis of the
data and recommendations at telus.com/securitystudy. 
About The Rotman School of Management  
The Rotman School of Management at the University of Toronto is
redesigning business education for the 21st century with a curriculum
based on Integrative Thinking. Located in the world's most diverse
city, the Rotman School fosters a new way to think that enables the
design of creative business solutions. The School is currently
raising $200 million to ensure Canada has the world-class business
school it deserves. For more information, visit
About TELUS Security Solutions  
TELUS Security Solutions offers customers the most comprehensive
security portfolio including consulting and managed services,
technology solutions, plus partnerships with 16 of the top 20 global
security vendors. In addition, TELUS Security Labs - with a staff of
30 researchers and a $3 million budget - is a leading provider of
security research to more than 50 of the world's top security product
vendors. Whether your priority is handling targeted threats with
real-time context, securing your mobile enterprise or removing your
security management challenge, TELUS Security Solutions can help you
gain visibility, understanding and control. 
About TELUS  
TELUS (TSX: T)(NYSE: TU) is Canada's fastest-growing national
telecommunications company, with $11.4 billion of annual revenue and
13.3 million customer connections, including 7.8 million wireless
subscribers, 3.3 million wireline network access lines, 1.4 million
Internet subscribers and 815,000 TELUS TV customers. Led since 2000
by President and CEO, Darren Entwistle, TELUS provides a wide range
of communications products and services, including wireless, data,
Internet protocol (IP), voice, television, entertainment and video.  
In support of our philosophy to give where we live, TELUS, our team
members and retirees have contributed more than $350 million to
charitable and not-for-profit organizations and volunteered 5.4
million hours of service to local communities since 2000. TELUS was
honoured to be named the most outstanding philanthropic corporation
globally for 2010 by the Association of Fundraising Professionals,
becoming the first Canadian company to receive this prestigious
international recognition.For more information about TELUS, please
visit www.telus.com. 
Ryan Bazeley
TELUS Media Relations
Press spacebar to pause and continue. Press esc to stop.