Survey: Gap Remains Between IT Security Issues And Deployed Solutions

CDW Corp. recently released the CDW User-Proof IT Security Report, which reveals a disparity between the most common IT security headaches and businesses’ deployment of solutions that could relieve them.

Survey respondents said their most common problems stem from employees using the Internet inappropriately, using unapproved software, and circumventing security infrastructure and policies. However, the study found companies lagged in their use of tools such as Internet content filtering or network auditing and visibility systems, which would help IT management spot and sometimes avoid such risky behavior by network users.

Specific findings of CDW’s User-Proof IT Security Report include:

  • Inappropriate use of the Internet on company networks is the top IT security headache, but just 56 percent of companies have Internet content filtering and blocking solutions in place
  • Installation and use of unauthorized software programs is a top challenge, but just 40 percent of respondents note that they employ network auditing and visibility systems
  • IT professionals whose organizations employ content monitoring and filtering, SSL protection, mail gateway security and similar measures to address common headaches give their network users higher grades for overall IT security compliance

CDW surveyed IT professionals at companies with more than 100 employees, focusing exclusively on those who said their organizations have written IT security policies and procedures. The survey asked respondents to grade their IT network users as a group on their understanding of and compliance with their IT security policies, and then asked in-depth questions regarding what security measures their companies employ and how IT security solutions could be improved to increase user compliance.

Responding IT professionals said their IT security systems are easy to use, but also reported much room for improvement in end-user understanding and compliance with security policies and procedures.

Seventy-seven percent of IT professionals said that their IT security systems are very easy or somewhat easy to use, but just 23 percent gave their users an ‘A’ on compliance with IT security policies, procedures and required practices. Asked to assess available security solutions, IT professionals wanted vendors to provide still more user-friendly and easier-to-manage solutions that require less IT staff intervention.

“Clearly, IT departments -- and IT security managers in particular -- are some of the busiest people in the business world today, and they spend so much time responding to client department needs that they don’t always have time or resources to address security priorities,” said Grimsley. “Outside resources appear to play an increasingly important role in IT security, and having a trusted advisor to lean on for information and counsel may help IT professionals make better decisions more quickly.”

CDW’s national online survey, taken during March 2008, collected responses from 304 IT professionals who said their companies have written IT security policies and procedures. Thirty-nine percent of the participants were from companies with 101-500 employees, and 61 percent were from companies with more than 500 employees. The margin of error for the study is ±5.6 percent at a 95 percent confidence level.

For the complete survey, visit http://www.cdw.com/userproofsecurity.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3