Global Survey Shows Companies Are Using More Automation in Cybersecurity, But Still Have Work to Do
Even much-hyped technologies like artificial intelligence and machine learning are nascent, with minimal adoption globally
SAN JOSE, Calif., Aug. 28, 2018 (GLOBE NEWSWIRE) -- Skybox® Security, a global leader in cybersecurity management, has released the results of a global survey conducted by Osterman Research, Understanding Security Processes and the Need to Automate. The survey, which includes responses from 465 senior security leaders at large enterprises in the U.S., EMEA and APAC,* reveals trends in the use of security automation, as well as artificial intelligence (AI) and machine learning (ML). Survey questions focused on workflows in firewall and security policy management and vulnerability management.
Key findings included some surprises. For example, according to the results, APAC is ahead of the U.S. and EMEA in terms of automation for processes involved in the management of firewall rules and security policy — the automation of these processes is least common in EMEA. And despite being hyped at shows and in the media, technologies such as artificial intelligence and machine learning are still in early days, with few organizations using AI/ML in production — just four percent of respondents in EMEA, nine percent in the U.S. and 27 percent in APAC.
In general, the report reveals that companies worldwide are continuing to struggle with network security management, especially as those networks are growing more complex and increasing in size. Surprisingly, most are only partially automating workflows and processes to help overcome these challenges — but they do see the value and are looking to automate more in the future.
“Many organizations have significant deficiencies with regard to their firewall and security management,” said Michael Osterman, principal analyst of Osterman Research. “Most realize that they need to improve the way they manage security and policy, and they also realize that automating workflows and processes is key to these improvements.”
Additional insights from the report include the following:
- Cutting costs, making better use of skilled employees and network size/complexity are top drivers for automation — but that varies by region. In EMEA, 61 percent of respondents said cost was the number one driver; 43 percent said it was in the U.S. Surprisingly, only 35 percent in APAC ranked costs as the key driver for automation. They instead ranked the difficulty of managing the size and complexity of their network as the primary reason (43 percent), as well as being able to move skilled staff off mundane activities to higher value/skill security tasks (40 percent). The U.S. and EMEA also cited the challenges of managing network size and complexity as a heavy driver (42 percent and 38 percent respectively).
- Better visibility and context are still needed. Organizations are still deficient in understanding network context and having visibility of firewall and security policy, including why firewall rules exist: 37 percent in the U.S., 61 percent in EMEA and 47 percent in APAC said they had only “minimal or some understanding.” Even more surprising, respondents said they have only minimal or some understanding of how security changes impact their business: 49 percent in the U.S., 63 percent in EMEA and 39 percent in APAC. And it appears that identifying vulnerabilities continues to be a challenge, with 53 percent in the U.S., 63 percent in EMEA and 42 percent in APAC having only minimal or some understanding of what vulnerabilities exist on network devices.
- Security staff are bogged down with incident response processes, compliance management and making changes to the security infrastructure. The top things respondents said they spend a “substantial” amount of time on are: incident response triage/prioritization and compliance management for the U.S.; firewall configurations and out-of-process changes for EMEA; compliance management and security changes for APAC.
- Security teams need help, with most organizations admiting they need to make major improvements in how they manage security and policy. The biggest improvements are needed in how organizations decommission applications: 72 percent of respondents in the U.S., 67 percent in EMEA and 54 percent in APAC say they do it “poorly or moderately.” Security teams also need help pruning firewall rules so that rulesets do not become bloated, with 67 percent in the U.S., 78 percent in EMEA and 48 percent in APAC saying they do it “poorly or moderately.” Ironically, these are areas where automation can make a huge impact.
- Automation is an impetus for cloud migration. It’s no surprise that for many companies, migration to the cloud is having a significant impact on the automation of security policy changes. This is most notable in APAC where 43 percent of organizations said cloud is impacting the automation of security policy changes. Survey results also show that the vast majority of organizations are working on initiatives focused on security automation to support cloud environments.
“The good news: security leaders have started on their automation journey,” said Skybox Director of Product Marketing, Sean Keef. “However, the results of this survey show us that many companies have a long way to go. It seems security leaders are still trying to understand where they’re going to get the most value out of automation, while also ensuring they’re not putting the organization at risk. There are many areas, however, where it is absolutely essential to implement automation — and, in fact, where the automation reduces risk. For example, collecting/gathering data for attack surface visibility and modeling, network change management and rule life cycle management. Networks are simply becoming too large and complex to manage manually. If you’re not already working with a vendor in these areas, you should start looking for one.”
Click here to download the full report and to register for the September 18 webinar with Michael Osterman, click here. Michael will discuss further details of the survey and answer questions. Skybox will also present a short overview on how the Skybox® Security Suite can automate core security management workflows.
About Skybox Security
Skybox provides the industry’s broadest cybersecurity management platform to address security challenges within large, complex networks. By integrating with 120 networking and security technologies, the Skybox Security Suite gives comprehensive attack surface visibility and the context needed for informed action. Our analytics, automation and intelligence improve the efficiency and performance of security operations in vulnerability and threat management and firewall and security policy management for the world’s largest organizations.
© 2018 Skybox Security, Inc. All rights reserved. Skybox Security and the Skybox Security logo are either registered trademarks or trademarks of Skybox Security, Inc., in the United States and/or other countries. All other trademarks are the property of their respective owners. Product specifications subject to change at any time without prior notice.
OneChocolate for Skybox Security
United Kingdom: Daniel Couzens
+44 (0)20 7437 0227 | DanielC@onechocolatecomms.co.uk
Germany: Melanie Grasser
+49 (0)89 3888 920 10 | MelanieG@onechocolatecomms.de
France: Xavier Delhôme
+33 1 41 31 75 09 | firstname.lastname@example.org
*The survey was conducted in June 2018 with respondents knowledgeable about security policy management and related issues in organizations with a minimum of 1,000 employees.
Om Nasdaq GlobeNewswire
One Liberty Plaza - 165 Broadway
NY 10006 New York
+1 212 401 8700http://www.nasdaqomx.com
NASDAQ (NASDAQ: NDAQ) is a leading provider of trading, exchange technology, information and public company services across six continents.
Følg saker fra Nasdaq GlobeNewswire
Registrer deg med din epostadresse under for å få de nyeste sakene fra Nasdaq GlobeNewswire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra Nasdaq GlobeNewswire
Province Brands of Canada Announces Proposed Reverse Takeover of Colson Capital Corporation25.9.2018 00:56 | Pressemelding
Not for distribution to U.S. Newswire Services or for dissemination in the United States. Any failure to comply with this restriction may constitute a violation of U.S. Securities laws. CALGARY, Alberta, Sept. 24, 2018 (GLOBE NEWSWIRE) -- Colson Capital Corp. (“Colson” or the “Corporation”) (TSXV: COLS.P) and Honest Inc., dba Province Brands of Canada (“Province Brands”), are pleased to announce that they have entered into an amended and restated arrangement agreement dated September 17, 2018 (the “Arrangement Agreement”) in respect of their proposed business combination transaction (the “Proposed Transaction”) which was previously announced in the news release of the Corporation dated June 5, 2018. The Proposed Transaction is expected to constitute Colson’s Qualifying Transaction under Policy 2.4 – Capital Pool Companies (“Policy 2.4”) of the TSX Venture Exchange (the “Exchange” or “TSXV”), subject to the TSXV’s approval. It is expected that the Resulting Issuer (as defined below) wil
Northland Power Opens Offshore Wind Operations Hub in Germany24.9.2018 23:30 | Pressemelding
New organizations support Northland’s expanded capabilities TORONTO, Sept. 24, 2018 (GLOBE NEWSWIRE) -- Northland Power Inc. (“Northland” or the “Company”) (TSX: NPI) today announced the opening of its offshore wind operations hub in Germany. The hub represents an expansion of Northland’s focus on offshore wind operations. Initial activities are focused on achieving synergies across the 332 MW Nordsee One wind farm, which commenced commercial operations in 2017, and the 269 MW Deutsche Bucht project, which is currently in construction. The team will also support Northland’s global project development work. Operations and maintenance activities, including remote monitoring and control of the wind turbines and substations, have been centralized in a port-side facility in the village of Norddeich. Commercial and engineering activities are being managed from a new office in the Hamburg area. “I’m pleased to welcome the Northland team to their new headquarters,” noted Troy Patton, Chief Ope
Concord Technologies Unveils NEXTSTEP—AI-driven, Cloud-based Platform that Simplifies Patient Data Capture and Document Workflows24.9.2018 23:12 | Pressemelding
SEATTLE, Sept. 24, 2018 (GLOBE NEWSWIRE) -- Concord Technologies, a leading provider of cloud fax services and document process automation solutions, today launched NEXTSTEP, a new, AI-driven, cloud-based platform optimized for healthcare providers to reduce the effort required to capture, access and integrate patient health information from paper and digital documents. Concord has optimized NEXTSTEP for healthcare providers struggling to digitize document-intensive clinical workflows, though its core features apply across all highly-regulated industries. Unlike conventional systems, NEXTSTEP is pre-trained to identify, classify and extract specific, field-level data, so it saves providers the cost and effort to “teach” the system what to look for. It also extends automated document classification and routing with the ability to coordinate document handling even with frequently-changing clinical processes. “We estimate a sizable market of providers who are being underserved by conventi
The Connecticut Institute for Refugees and Immigrants honors Ethan Allen’s Farooq Kathwari24.9.2018 23:00 | Pressemelding
DANBURY, Conn., Sept. 24, 2018 (GLOBE NEWSWIRE) -- The Connecticut Institute for Refugees and Immigrants (CIRI) honored Farooq Kathwari, Chairman, President and CEO of Danbury-based Ethan Allen Interiors Inc., with its Legacy Award at a gala dinner in Westport, CT., on September 23. He was chosen for this honor in recognition of his commitment to humanitarian causes, to justice and human dignity, and to the plight of displaced people across the world. Mr. Kathwari has served in numerous capacities at many nonprofit organizations; among them, he is currently a member of the Board of Overseers of the International Rescue Committee, and a chairman emeritus of Refugees International. The gala commemorated CIRI's 100 years as the state’s leading champion for refugees, immigrants, survivors of torture, and survivors of human trafficking. Founded in 1918 as the International Institute of Connecticut (IICONN), CIRI remains the state’s preeminent provider of advocacy and high-impact services th
Constellation Brands Elects Jennifer M. Daniels of Colgate-Palmolive Company to its Board of Directors24.9.2018 22:07 | Pressemelding
VICTOR, N.Y., Sept. 24, 2018 (GLOBE NEWSWIRE) -- Constellation Brands, Inc. (NYSE: STZ and STZ.B), a leading beverage alcohol company, announced today the election of Jennifer M. Daniels, chief legal officer and secretary of Colgate-Palmolive Company, to serve as a member of its board of directors, effective as of the close of business on September 20, 2018. This election increases the size of Constellation’s board from 11 to 12 members. “We are pleased to welcome Jennifer to our board of directors,” said Constellation’s Chairman of the Board Richard Sands. “Jennifer brings extensive experience in consumer product goods, mergers and acquisitions, regulatory compliance and corporate governance that will serve as tremendous assets to our board at a very exciting time as our company explores new avenues of growth, while continuing to build momentum for our high-performing beverage alcohol business.” Since November 2014, Daniels has served as chief legal officer and secretary of Colgate-Pa
World Conference on Lung Cancer Monday Press Conference: Clinical Research Results and Gender Differences in Lung Cancer Survival24.9.2018 20:26 | Pressemelding
TORONTO, Sept. 24, 2018 (GLOBE NEWSWIRE) -- At today’s press conference at the International Association for the Study of Lung Cancer’s (IASLC’s) 19th World Conference on Lung Cancer (WCLC), conference co-president Dr. Andrea Bezjak, M.D., FRCPC, MSc, professor in the Departments of Radiation Oncology and Health Policy, Management and Evaluation at the University of Toronto and staff radiation oncologist at Princess Margaret Cancer Centre, summarized the wide-ranging study topics presented in today’s conference, from significant clinical research findings to gender differences in lung cancer survival. IMpower132 study shows atezolizumab in combination with carboplatin and pemetrexed improves survival in Stage IV non-squamous NSCLC Recent findings from the IMpower132 study, presented by Vassiliki A. Papadimitrakopoulou, M.D., chief of the Section of Thoracic Medical Oncology at MD Anderson Cancer Center, demonstrate that the use of atezolizumab in combination with carboplatin as first-l
I vårt presserom finner du alle våre siste saker, kontaktpersoner, bilder, dokumenter og annen relevant informasjon om oss.Besøk vårt presserom