Young people entering the workplace see email as slow and have grown up with P2P and Web 2.0 applications - yet most businesses are still living in a Web 1.0 world – with security policies to match. It's already a major battle keeping email and the "vanilla" web free from attacks, malware and spam - the adoption of Web 2.0 will make the job even harder. Yet, simply closing access to unapproved tools can be short sighted as unhappy talent drifts to rival businesses with more enlightened policies.
This feature will look at ways that information security professionals can learn to "think at Web 2.0 speed", embrace the advantages of the new business tools without compromising security.
Some questions the article will answer:
- What are the business advantages of adopting web 2.0 in the workplace?
- Which types of businesses are more likely to adopt and encourage Web 2.0? What are the reasons for this? Which aren’t and why is that?
- Does the recession make it easier for companies to restrict Web 2.0 usage by taking advantage of people’s need for employment and inability to move companies? Is this likely to come back to haunt the business?
- What are the techniques that cyber criminals are using to scam employees (and consumers) via web 2.0 applications?
- Even in a recession people seem to be buying more sophisticated phones and netbooks and using them for work. More people are working from home mixing domestic and business use on the same PC or Mac. What’s the best way of dealing with these trends?
I'd like to talk to the following groups of people:
- Chief information security officers and other information security profesionals about their experiences of Web 2.0, good and bad and even some that may have been open to Web 2.0 to begin with but then changed their mind due to security concerns.
- Experts from Facebook, LinkedIn, Twitter etc who can discuss the security of their applications and others and whether they are suitable for enterprise use (or not)
- The likes of RSA, Symantec, McAfee etc.
- Consultants and analysts who can either address all the issues or address specific ones mentioned above.
As usual, I'm going to want a case study of a business that has adopted Web 2.0 and successfully integrated security both in the enterprise and remotely. I'd like to be doing phone interviews during the next two weeks (until November 13th). Approaches by email only, because I'm going to be out of the office and you'll only get my voicemail if you call!
