Nine Questions to Ask About the Internet of Things
The age of the Internet of things has arrived: More than two out of five enterprises are either currently leveraging IoT technologies or plan to do so this year, according to research from ISACA. But these organizations will invite huge risks if they don't confront the potential cyber-security issues that are commonly associated with IoT deployments. To provide some guidance, ISACA has published a report, "Internet of Things: Risk and Value Considerations," which features a list of nine questions that IT departments should ask before pursuing IoT initiatives. While the IoT era has only begun, the report indicates that its impact will be transformational. However, that transformation will be problematic for companies that don't proactively initiate protective policies. "Connected devices are everywhere—from obvious ones like smart watches and Internet-enabled cars to ones most people may not even be aware of, such as smoke detectors," says Robert Stroud, international president of ISACA and vice president of strategy and innovation at CA Technologies. "Often, organizations [use] IoT without even realizing it, which means their risk management stakeholders are not involved and potential attack vectors are going unmonitored." ISACA (previously known as the Information Systems Audit and Control Association) is an independent, nonprofit association that provides guidance, benchmarks and other resources for more than 115,000 IT industry members worldwide. The following questions are adapted from the report.