Security Configuration Management LinkedIn Survey

We partnered with LinkedIn to conduct a poll targeting security leaders, regarding general Security Configuration Management in their organization.

Does your organization have set hardening policies for IT configurations?

Answer Responses
Yes 134
Yes, but they are enforced 24
Working to establish policies 26
No 24
Don't know 23

Which security policies do you use?

Answer Responses
Center for Internet Security (CIS) 17
COBIT 30
NIST 40
Our own internally developed policies 56

Does the person who manages the security configuration policy also manage your patching policy?

Answer Responses
Yes 83
No 103