Enterprises wise up to data loss risk
Close to 74% of senior security executives from Europe see the loss of payment card data and its subsequent impact as their biggest concern.
Close to 74% of senior security executives from Europe see the loss of payment card data and its subsequent impact as their biggest concern. Additionally, more than 90% of them are already preparing for deperimeterisation - or protecting data at multiple levels.
These were the findings of a live survey by vendor Qualys, which questioned 80 security professionals, at the Jericho Forum Conference at the InfoSecurity Europe tradeshow.
"The fact that the majority see the effect of data loss on brand reputation as their biggest concern not only demonstrates the awareness built by incidents such as the TK Maxx data breach but clearly also reflects on the changing role of CSOs today. No longer are security professionals pure technologists. They are now taking on more responsibility on a corporate level and realise that security needs to be moved higher up the business agenda," said Philippe Courtot, (pictured) the chairman and CEO of Qualys.
The survey also shows that European professionals are ahead of their US counterparts in relation to deperimeterisation. Around 90% believe it will happen in the next five years and that companies will not be operating with a hardened perimeter. In contrast, US executives will continue to rely on perimeter security.
But Europeans need to catch up with their US counterparts with regard to PCI compliance. Only 39% of Europeans are currently acting on the need for PCI compliance in contrast to 63% in the US. In the US there is greater pressure to drive incidents such as TJX in to the open, while in Europe there is no directive on disclosure.
More than 50% of executives both sides of the Atlantic see compliance as the biggest driver in their security strategy.
The survey found that more than 69% of European executives believe that insider threats pose a more serious problem than threats from outside the organisation.
In relation to security metrics Europe was found to be lagging with 39% of executives currently defining their metrics and only 29% having mature metrics in place.
Software-as-a-service is clearly gaining momentum in Europe with 26% already deploying SaaS and 29% considering it.