The results of the Security BSides London Attendees Survey 2017, co-ordinated by Digital Guardian has found that users and their behaviours are the biggest security challenge.
The survey collected responses from 187 full-time security industry professionals, with a view to getting an insider’s outlook on the current cyber security climate.
Security professionals were asked what they believe to be the industry's biggest challenge. More than a third (36 percent) suggested issues around user education and behaviour, while 28 percent said that skills shortages and recruitment issues are the biggest challenge.
Of a range of threats often cited in popular security media, security professionals said that the most over-hyped threats are nation state cyber threats. Meanwhile, just under half (47 percent) of respondents said that uneducated users and insiders are the most overlooked threat.
The vast majority (92 percent) of security professionals said that the industry is deploying more resources in tackling outsider threats, and yet almost three quarters (71 percent) said businesses should be more concerned about insider threats.
Furthermore, when it comes to general security decision-making, only 9 percent of respondents said that senior management are making good decisions around security strategy and spending.
Asked what elements of security strategy or spending they would change if they were senior management, the top areas for improvement are:
- Education and awareness, with 65 percent of responses
- Budgets, with 32 percent of responses
- Make security a greater priority, with 30 percent of responses
- Recruitment of security professionals, with 22 percent of responses.