IBM in its third annual Chief Information Security Officer (CISO) study said more than 80 percent of security leaders believe the challenge posed by external threats is on the rise.
60 percent agree their organizations are outpaced in the cyber war. Technology is a critical component in addressing security issues and threats, with big data, cloud and mobile named as the most significant areas of prioritization, said IBM.
IBM’s third annual Chief Information Security Officer (CISO) study – based on 138 interviews with the surveyed organizations – said 40 percent of security leaders identified external threats as their top challenge, while 15 percent cited regulations as their top challenge.
As enterprise leaders continue to outline business priorities, external threats will require the most organizational effort over the next three to five years – as much as regulations, new technologies, and internal threats combined.
70 percent of security leaders say they have mature, traditional technologies that focus on network intrusion prevention, advanced malware detection and network vulnerability scanning.
50 percent CISOs agree that deploying new security technology is the top focus area for their organization, and they identified data leakage prevention, cloud security and mobile/device security as the top three areas in need of transformation.
90 percent adopted cloud or are currently planning cloud initiatives. Of this group, 75 percent expect their cloud security budget to increase or increase significantly over the next three to five years.
70 percent said real-time security intelligence is important to their organization. Despite this strong agreement, the study found areas such as data classification and discovery and security intelligence analytics have relatively low maturity (54 percent) and require a higher need for improvement or transformation.
Despite the growing mobile workforce, 45 percent of security leaders have an effective mobile device management approach. Mobile and device security ranked at the bottom of the maturity list (51 percent).
CISOs face additional challenges from governments as nearly 80 percent of respondents said the potential risk from regulations and standards have increased over the past three years.
Security leaders are most uncertain about whether governments will handle security governance on a national or global level as well as how transparent they will be in doing so. 22 percent think that a global approach to combating cybercrime will be agreed upon in the next three to five years.
90 percent of security leaders agree that they have significant influence in their organization, with 76 percent stating that their degree of influence has significantly increased in the last three years. In addition, 71 percent strongly agree that they are receiving the organizational support that they need in order to do their jobs effectively.