Dell Data Security Survey Finds that a Lack of Security Knowledge Limits Business Initiatives
Date : 08/03/2016
- 82 per cent of IT and business decision makers have attempted to limit data access locations for employees in an attempt to improve security
- Despite having protections in place, 73 per cent of respondents are still concerned about malware and advanced persistent threats
- Only one in four respondents are very confident in their C-Suite’s ability to budget enough for data security solutions over the next five years
Data security has become a priority for C-suite executives, keeping ahead of the threats remains a concern
While the C-suite is more invested in data security than in the past, IT teams feel executives are still not allocating the energy or resources needed to properly address data security challenges.
- Nearly three in four decision makers agree that data security is a priority for their organization’s C-suite; however, one in four decision makers don’t find their C-suite to be adequately informed about data security issues.
- Three in four decision makers say their C-suite plans to increase current security measures, and more than half expect to spend more money on data security in the next five years.
- Cost is a concern when it comes to building on existing programs, with 53 per cent of respondents citing cost constraints for why they don’t anticipate adding additional security features in the future.
- Only one in four decision makers is very confident in their C-suite’s ability to budget enough for data security solutions over the next five years.
Despite increased buy-in from the C-suite, IT departments still need more business support to fully integrate data security
The report found that a lack of investment in streamlined technologies and a shortage of talent are both barriers to fine-tuning data security programs.
- The majority of decision makers (58 per cent) believe that their organization is adversely affected by the shortage of trained security professionals in the industry.
- 69 per cent of decision makers still view data security as a burden on their time and budget.
- Still, nearly half (49 per cent) of respondents believe they need to spend more time securing their data in the next five years than they are today.
- 76 per cent believe their solutions would be less burdensome if provided through a single vendor.
Malware and weaponized attacks are keeping IT and business decision makers up at night
The report showed that respondents remain highly concerned about malware, despite the fact that most have anti-malware solutions in place.
- Nearly three in four (73 per cent) decision makers are somewhat to very concerned about malware and advanced persistent threats.
- Concern over malware threats is highest in the United States (31 per cent very concerned), France (31 per cent very concerned) and especially India (56 per cent very concerned) – while it’s a lesser concern in Germany (11 per cent very concerned) and Japan (12 per cent very concerned).
- Only one in five respondents are very confident in their ability to protect against sophisticated malware attacks.
- Respondents are more worried about spear phishing attacks (73 per cent are concerned) than any other breach method.
“ The fact that IT and business decision makers are not confident in their anti-malware defense implies that they may be using outdated or ineffective tools,” said Brett Hansen, executive director, Data Security Solutions for Dell. “When IT teams do not have the resources they need to proactively prevent threats and stay on top of the evolving threat landscape, they are forced to play defense using threat detection and remediation alone.”
Employers feel they have to limit mobility in order to protect data
The common narrative is that all offices are becoming more mobile, but according to this report, the truth is somewhat more complicated.
- The majority of mid-market companies (65 per cent) are holding back plans to make their workforce more mobile for security reasons with 67 per cent hesitant to introduce a bring-your-own-device (BYOD) program.
- While 82 per cent of decision makers have attempted to limit data access points to enhance security, 72 per cent of decision makers believe that knowing where data is accessed will make their data protection measures more effective.
- 69 per cent of respondents say they are still willing to sacrifice individual devices to protect their company against a data breach, yet 57 per cent of respondents are still concerned about the quality of encryption used by their company.
- Security concerns aside, two in five respondents are interested in allowing greater mobility for enhanced employee productivity.
Respondents see their data at risk in public cloud platforms
With more employees using public cloud services like Box and Google Drive in the workplace, decision makers are not confident in their ability to control risks posed by these applications.
- Nearly four in five respondents are concerned with uploading critical data to the cloud, and 58 per cent are actually more concerned than they were a year ago.
- 38 per cent of decision makers have restricted access to public cloud sites within their organization due to security concerns.
- 57 per cent of decision makers who are current cloud users, and 45 per cent of those planning to use public cloud platforms, will rely heavily on cloud vendors to provide security .
- Only one in three organizations cite improving secure access to public cloud environments as a key focus for their security infrastructure, yet 83 per cent say that employees are either using, or will soon be using, public cloud environments to share and store valuable data.
About the Dell Data Security Report
Penn Schoen Berland conducted an online survey among 1,302 commercial respondents in the United States, Europe, and the Asia Pacific region, including Japan. Respondents represented both IT and business decision makers of mid-market organizations. Research was conducted from November 19 to December 8, 2015.
Michael Kaiser, Executive Director, National Cyber Security Alliance
“While we’ve come a long way from the days when cybersecurity was an add-on to the IT infrastructure in organizations, more work needs to be done. The Dell Data Security Survey highlights that as the security landscape evolves, and threats become more sophisticated, organizations need to foster a culture of cybersecurity awareness from the top down and integrate it throughout their organization.”
Dell Inc. listens to customers and delivers innovative technology and services that give them the power to do more. For more information, visit www.dell.ca.
+1 (647) 259-3266