Survey Identifies Top Data Security Technologies to Stem Data Breaches

Imperva, the leader in data security, and Securosis announced the findings of a comprehensive independent data security survey of more than 1100 U.S. and multinational IT security practitioners. The survey focused on uncovering what technologies security practitioners find successful to mitigate breaches and comply with security mandates.

In particular, the survey found that the most effective data security approach involves a modern approach that uses technology to protect applications and databases alongside traditional approaches. For example, web application firewalls were among the top five rated technologies for reducing the number of data breach incidents.  Others technologies included network data loss prevention, full drive encryption, server/endpoint hardening, and endpoint data loss prevention.

The survey also found:

    * Malicious intentions are behind 62 percent of data theft. Insider breaches comprised 33 percent of incidents while hackers comprised 29 percent; the remaining breaches were accidental.
    * Nearly two-thirds of organizations either didn't know if they suffered any data breach incidents, or stated that they didn't experience any. Of those that did, 46 percent saw a decline in breaches while 27 percent reported the same number of breaches from the previous year.

"Data security is an emerging practice requiring practitioners to navigate numerous mandates, threats and technologies," said Amichai Shulman, Imperva's CTO.  "This survey will help security teams identify what their peers find successful and hopefully help make improvements to their own strategy and operations."

Additionally, the survey found that enterprise data security initiatives have accelerated data security as data theft and monetization become the ultimate goal for hackers and malicious insiders. Intense regulatory scrutiny continues to drive many data security initiatives. In fact, 88 percent of respondents noted that PCI-DSS was the primary driver for their information security program. Organizations are challenged with securing their data and maintaining regulatory compliance while controlling cost, complexity and risk.

The independent survey, designed with public review to ensure objectivity, was conducted by analyst firm Securosis in June and July 2010. Organizations across all major vertical markets and company sizes were surveyed. Analysis was performed independently of sponsorship and the complete anonymized data set will be released under a Creative Commons license for public review and analysis.

"This survey illustrates that data security as a practice has transitioned past early adopters and significantly penetrated the early mainstream of the security industry," said Rich Mogull, CEO and analyst with Securosis, an independent research firm specializing in information security. "Given what's at stake, we are pleased to put numbers behind what we all hoped – that organizations are starting to take data security more seriously."

Security professionals can take the survey to compare their data security practices to other survey respondents by visiting: http://www.surveymonkey.com/s/38Q9Y5Q

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • New Research Shows a Continuing Increase in Ransomware Victims

    GuidePoint Security recently announced the release of GuidePoint Research and Intelligence Team’s (GRIT) Q1 2024 Ransomware Report. In addition to revealing a nearly 20% year-over-year increase in the number of ransomware victims, the GRIT Q1 2024 Ransomware Report observes major shifts in the behavioral patterns of ransomware groups following law enforcement activity – including the continued targeting of previously “off-limits” organizations and industries, such as emergency hospitals. Read Now

  • OpenAI's GPT-4 Is Capable of Autonomously Exploiting Zero-Day Vulnerabilities

    According to a new study from four computer scientists at the University of Illinois Urbana-Champaign, OpenAI’s paid chatbot, GPT-4, is capable of autonomously exploiting zero-day vulnerabilities without any human assistance. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West

Featured Cybersecurity

Webinars

New Products

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3