Securosis announced the findings of a comprehensive independent data security survey of more than 1100 multinational IT security practitioners. The survey focused on uncovering what technologies security practitioners find successful to mitigate breaches and comply with security mandates.
In particular, the survey found that the most effective data security approach involves a modern approach that uses technology to protect applications and databases alongside traditional approaches.
Web application firewalls were among the top five rated technologies for reducing the number of data breach incidents. Others technologies included network data loss prevention, full drive encryption, server/endpoint hardening, and endpoint data loss prevention.
The survey also found:
- Malicious intentions are behind 62 percent of data theft. Insider breaches comprised 33 percent of incidents while hackers comprised 29 percent; the remaining breaches were accidental.
- Nearly two-thirds of organizations either didn’t know if they suffered any data breach incidents, or stated that they didn’t experience any. Of those that did, 46 percent saw a decline in breaches while 27 percent reported the same number of breaches from the previous year.
Additionally, the survey found that enterprise data security initiatives have accelerated data security as data theft and monetization become the ultimate goal for hackers and malicious insiders. Intense regulatory scrutiny continues to drive many data security initiatives. In fact, 88 percent of respondents noted that PCI-DSS was the primary driver for their information security program.
Organizations are challenged with securing their data and maintaining regulatory compliance while controlling cost, complexity and risk.