IT disaster recovery, cloud computing and information security news

Changes in attitude to information security risks identified

Details

Bromium, Inc., has published the results of a new survey, which questioned more than 125 information security professionals about the greatest risks facing organizations today and the effectiveness of different solutions and architectures. The results, available in the ‘Enterprise Security Confidence’ report, show that while concern for end-user risk persists, confidence is waning in traditional detection-based security solutions, such as antivirus and firewalls. Instead, interest is shifting toward protection-based security solutions, such as endpoint threat isolation.

Highlights from the Enterprise Security Confidence report include:

  • End users are the source of greatest risk: nearly two-thirds of respondents (62 percent) believe that users are one of the sources of the greatest security risk. Nearly one-third cited emerging cloud and mobile technologies that reduce IT control; 29 percent cited cloud services; and 29 percent said mobile devices among the top sources of risk.
  • Less confidence in legacy solutions: an overwhelming majority of respondents (92 percent) said they have lost confidence in the ability of traditional endpoint protection solutions, such as antivirus and white listing, to detect unknown threats like zero-day attacks. Additionally, 78 percent believe antivirus is not effective against modern attacks.
  • Endpoint threat isolation is effective: a majority of respondents (58 percent) believe endpoint threat isolation is effective at preventing cyber threats, such as zero-days and advanced attacks. Nearly one-third said network-based solutions are effective; 28 percent have faith in intrusion detection/intrusion prevention (IDS/IPS); and 27 percent think network sandboxes are effective.
  • Prevention is the foundation of security: a majority of respondents (58 percent) believe that prevention, such as hardening and isolating systems, is the most foundational aspect of security architecture, compared to 23 percent who cited detection, 16 percent who cited response (investigation/remediation), and 34 percent who said predictive analytics.

www.bromium.com


Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

The Hunt for Hidden Risks
The BIA Guide

Additional Resources

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.