‘Data Breach’ Top Concern of IT Security Pros for 2015Acton, Mass.
EiQ Networks, a pioneer in continuous security intelligence, risk and compliance solutions, announced the results of its annual Security Monitoring, and SIEM study about priorities and challenges for information security in 2015, based on responses from 145 IT decision makers across industries.
Results point to lack of confidence in existing security technologies and difficulties obtaining budget and specialized talent to effectively protect information systems in an increasingly complex threat environment.
Data Breach was the top concern: close to 90% of IT security pros across industry sectors indicate “Concern” or “High Concern” they will face a data breach in 2015. Only 15% report they are “well prepared” for a data breach and only 21% are “confident” that their security technologies can effectively mitigate risk of security incidents.
60% of respondents said they had only a “partial process” for cyber defense and 11% report “no process at all’ is in place. Only 31% of respondents have a “solid process” in place for cyber defense, and only 15% of respondents said they are “well prepared” for a cyber-attack.
Low Confidence in Technologies Deployed for Cyber-Protection
A variety of technologies were reported to be in use for overall cyber security protections leading with Traditional Firewall (81%); Anti-virus software (66%); IDS/IPS technologies (60%); Log management (60%); SIEM (44%). Despite these deployments, only 21% of IT decisions makers report they are truly “confident” that these technologies will work against a cyber-threat. 67% report they are “somewhat confident” in these technologies to effectively mitigate risk of security incidents and that they are still seeking alternatives.
85% of IT Pros indicate they plan to replace their current SIEM solution with Managed Services solutions. Drivers for the swap-out include cost savings (27%), technology advantage (21%) and performance gains (12%).
- Top Drivers on Information Risk Management 2014:
Mobility (37%), Cloud (23%) and Big Data (19%) had a significant impact on risk management in 2014:
- 2015 Top Challenges for wide-scale information risk management:
Keeping up with the latest cyber threats
Staying current on new forms of malware
Insight on which systems are adequately protected from threats
- 2015 Top Concerns for IT infrastructure:
Mobility (18%), Networks (17%), Endpoints (16%), Databases (13%), Cloud (13%), Web Applications (14%) and Virtualization (7%)
- Managed Services Replaces SIEM: 85% of IT Pros indicate they plan to replace their current log management and SIEM vendors with Managed Services solution.
“As the volume and complexity of security breaches continues to accelerate, increasing number of organizations are at risk of losing valuable customer and corporate data, and intellectual property,” said Brian Mehlman, Vice President of Product Management, EiQ Networks. “With the severity of today’s threat environment and impact on all areas of the business, IT pros are looking beyond basic compliance and beginning to focus on security best practices to get out in front. Defining and implementing an effective security program that provides both proactive and reactive security monitoring on a continuous basis and is supported by trained security professionals, who can engage in timely analysis and remediation, is mandatory in protecting businesses against current threats.”
Conducted between October 7, 2014, and October 17, 2014, the study reflects responses from 145 IT decision makers including senior management, security managers, directors, and network and systems engineers across a industries including healthcare, government, financial services and retail, with breakouts for small and midsize enterprises.
- Infographic: : www.eiqnetworks.com/resources/it-pros-feeling-vulnerable
About EiQ Networks:
EiQ Networks, a pioneer in continuous security intelligence and compliance solutions and services, is transforming how organizations identify threats, mitigate risks and enable compliance. Our flagship solution, SecureVue®, a continuous security intelligence platform, helps organizations proactively detects incidents, implement security best practices, and receive timely and actionable intelligence along with remediation guidance. Through a single console, SecureVue enables a unified view of an organization's entire IT infrastructure for continuous security monitoring, critical security control assessment, configuration auditing, and compliance automation. In addition, EiQ offers SOCVue, a security monitoring software as a service (SaaS) offering, provides 24x7 security operations to organizations that require security monitoring but lack resources or on-staff expertise to implement an effective security program. For more information, visit: http://www.eiqnetworks.com
Gutenberg Communications for EiQ Networks