A recent GreenSQL survey of IT professionals worldwide concluded that 31.4% of security professionals believe that database security implementation is too complex, making it their number one obstacle. Almost 20 percent think that requirement for dedicated personnel or special expertise is yet another hurdle in putting in place database security.
Surprisingly, 13.2% of respondents stated that their organizations’ management still does not understand that enforcing database security measures is essential to both client security and reputation protection.
They were asked: “What are your main challenges or obstacles to implementing database security in your organization?”
- Complexity: 31.4%
- Requirement for dedicated personnel or special expertise: 19.9%
- Management doesn’t understand the need: 13.2%
- Cost: 9.1%
- Other: 26.4%
“The intimidation is often greater than the self-preservation factor when it comes to database security,” said Amir Sadeh, CEO, GreenSQL.
SQL injection attacks occur several times every hour; companies’ most valuable assets are in their databases – customers’ records, orders, accounts payable – and without protection, that information can easily find a place on the open market.
“Database security is the difference between a company maintaining its position or running afoul of regulations and opening itself up to significant financial losses and reputation damage,” concluded Sadeh.