Information Security Trends
Preventing/Detecting Insider Espionage Not Adequately Covered

 


About This Report: A June survey of 651 members of the 451 Global Digital Infrastructure Alliance focused on key information security trends, including overall spending and implementation status, as well as pain points and concerns.

 

90-Day Spending. A total of 52% of respondents say their organization’s information security spending will increase over the next 90 days – up four points from the previous survey in February. Only 3% say spending will decrease.

Security Technology In Use/Pilot. Firewall (89%) and Web Content Filtering (80%) are the two most widely adopted security technologies in use. Just over three-quarters of the respondents use Vulnerability Management (76%) solutions.

Top Pain Points. Respondents were asked to select the top security pain points, and User Behavior (30%) is the largest, followed by Accurate, Timely Monitoring of Security Events (22%) and Staffing Information Security (21%).

Inadequately Addressed Security Threats. Respondents were also asked which security threat they believe is currently inadequately addressed within their organization. The internal problem of Preventing/Detecting Insider Espionage (29%) tops the list.

By Tracy Corbo

Information Security Spending Trends

90-Day Spending. A total of 52% of respondents say their organization’s information security spending will increase over the next 90 days – up four points from the previous survey in February 2017. Only 3% say spending will decrease, a one-point improvement from the previous survey.

12-Month Spending Trends. Looking at IT security spending plans over the next 12 months indicates that security spending remains strong; 72% of respondents expect a spending increase, up five points from 67% in the previous survey.

Only 5% say spending will decrease, which is up one point from the February survey.

Security Technology Implementation Status

In Use/Pilot. Firewall (89%) and Web Content Filtering (80%) are the two most widely adopted security technologies in use. Just over three-quarters of the respondents use Vulnerability Management (76%) solutions.

Planned. Over the next six months, Information Security Awareness Training (9%) tops the list for planned deployments over the next six months. While Data Leakage Prevention (8%) is second over the next six months, but that number jumps to 12% over the next two years.

Not in Plan. Only 13% of respondents are currently using User Behavior Analytics and just over half (53%) have no plans to implement. While 29% of respondents are currently using Managed Security Services Providers, 52% have no immediate implementation plans.

Security Pain Points and Concerns

Pain Points. Respondents were asked to select the top security pain points, and User Behavior (30%) is the biggest pain point followed by Accurate, Timely Monitoring of Security Events (22%) and Staffing Information Security (21%).

A closer look at the top pain points for IT staff compared to senior management shows that while User Behavior is a top concern for both groups, other issues such as Cloud Security (23%) is of greater concern for senior management while Staffing Information Security (22%) is a top concern for IT staff.

Top Security Concerns. The top security concern over the last 90 days is Hackers/Crackers with Malicious Intent. It is of greater concern for senior management (63%) while Compliance, the second general security concern, is of greater importance for IT staff (59%).

Inadequately Addressed Security Threats. Respondents were also asked which security threats they believe are currently inadequately addressed within their organization. The internal problem of Preventing/Detecting Insider Espionage (29%) and the external threat from Hackers/Crackers with Malicious Intent (25%) continue to be major security threats.

Security Projects

Current. In terms of the top information security projects that are currently being implemented, Risk Assessment (25%) and Compliance Requirement (21%) are the most popular, followed more distantly by Business Requirement (13%).

Next 12 Months. Looking ahead at the top security projects over the next 12 months, Security Awareness Initiatives (20%) is slightly ahead of Security Information and Event Mgmt. (19%) and Endpoint Security (19%), which are both tied for second. Cloud Infrastructure Security (18%) is a close third.

You can access a PDF version of this 451 Alliance report here.

If you have any questions about your 451 Alliance membership, please contact 451Alliance@451Alliance.com
451 Research, LLC does not make any warranties, express or implied, as to the information presented in this report.

Appendix: Security Technology Definitions