SailPoint Survey Reveals Cyber Risks Are Leaving IT in the Dark
According to SailPoint’s 9th annual Market Pulse Survey, released earlier this year, senior IT decision makers say that more cyber risks are being created outside of the IT department’s visibility; yet it’s still IT’s responsibility to mitigate these risks. The survey found that organizations need to better define and enforce corporate policies company-wide, addressing risks like shadow IT and bring your own device (BYOD) given today’s increasingly mobile, agile workforce.
Recent sprawling attacks like WannaCry that affected organizations worldwide, as well as direct attacks on organizations of all sizes and in all industries, have demonstrated the significant organizational damage they cause. In the wake of data breach pandemics at the level that we’ve seen over the past year, most organizations need to take stock of the security controls they currently have in place and work to understand where their exposure points exist and how to remedy them.
This year’s Market Pulse Survey found the following:
- More risks are being created by departments outside of IT’s purview, but it’s still IT’s problem: More than half of respondents (55 percent) believe that one of the key reasons that non-IT departments introduce the most risk is that they often lack the understanding of what actions and behaviors lead to risk. Using unsecure mobile devices and adopting unmonitored SaaS applications are two examples of such risky behavior. While the majority of these risks are being created outside of IT’s view, it is still IT’s responsibility to mitigate the risks associated with them. According to the survey, 7 out of 10 organizations have embraced BYOD and SaaS application adoption, while less than half have formal policies in place to protect corporate data.
- Organizations need to better outline and enforce corporate policies company-wide: While organizations may create policies to govern access that help secure the enterprise, there is often a disconnect between what is defined as policy and what is actually enforced. Of the companies that have policies in place, 3 in 10 say that their users are not following them. With 72 percent of respondents concerned about BYOD and shadow IT as organizational exposure points, it’s clear that enterprises need to better enforce corporate security policies company-wide.
- Identity Governance is key to managing risk: More than 7 in 10 (71 percent) of respondents agree their organization’s data would be less exposed if they were better equipped to manage it. Over 7 in 10 (71 percent) of respondents whose organization has introduced an identity governance solution believe it will result in a more automated and efficient organization, while around 2 in 3 (65 percent) hope to improve business enablement.
- Hybrid IT environments are a reality for today’s enterprise: With cloud adoption accelerating for most enterprises, control over exposure points is needed across the entire IT environment, both on-premises and in the cloud. Market Pulse Survey respondents confirmed this trend towards the cloud with almost half (43 percent) reporting that they already have a “cloud first” strategy in place, with a similar proportion (46 percent) planning to at some point in the future. And, although many enterprises are moving to the cloud, they still have a variety of legacy applications that will remain on-premises, creating a complex, hybrid IT environment that still needs to be managed and governed holistically. This is why building a cybersecurity program that puts identity at the center of that strategy is more important than ever for today’s modern enterprise – it gives enterprises that single view into all users’ access to all data and applications, no matter where it resides, on-premises or in the cloud.
“Our Market Pulse Survey uncovered an interesting ‘identity trilemma’ – multiple departments within an organization are adopting their own SaaS solutions to appease business users through shadow IT, all while not properly adhering to company security policies,” said Juliette Rizkallah, CMO, SailPoint. “This is a dangerous combination that creates serious exposure points for companies today. Identity governance is still the key in protecting these points of exposure and mitigating the risks inherent in today’s hybrid IT environment. For enterprises to have full visibility into who has access to what, understanding the ‘who’ in that equation is more important than ever. This is why putting identity at the center of security strategies is the best approach for defending and protecting today’s modern enterprise.”
SailPoint’s 2017 Market Pulse Survey is a global survey focused on how senior IT decision makers are waging war against data breaches and insider threats. The company commissioned independent research firm Vanson Bourne to interview 600 senior IT decision makers at organizations with at least 1,000 employees across Australia, France, Germany, Italy, the United Kingdom and the United States. The results clearly articulate the importance of putting identity at the center of an organizations’ overall IT security strategy.
SailPoint: The Power of Identity™
SailPoint, the leader in enterprise identity management, brings the Power of Identity to customers around the world. SailPoint’s open identity platform gives organizations the power to enter new markets, scale their workforces, embrace new technologies, innovate faster and compete on a global basis. As both an industry pioneer and market leader in identity governance, SailPoint delivers security, operational efficiency and compliance to enterprises with complex IT environments. SailPoint's customers are among the world’s largest companies in virtually every industry, including: 9 of the top banks, 7 of the top retail brands, 6 of the top healthcare providers, 6 of the top property and casualty insurance providers, and 6 of the top pharmaceutical companies.
SailPoint, the SailPoint logo, IdentityIQ, IdentityNow, IdentityAI, SecurityIQ and all techniques are trademarks or registered trademarks of SailPoint Technologies, Inc. in the U.S. and/or other countries. All other products or services are trademarks of their respective companies.
Jessica Sutera, 978-278-5411
Om Business Wire
(c) 2018 Business Wire, Inc., All rights reserved.
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Følg saker fra Business Wire
Registrer deg med din epostadresse under for å få de nyeste sakene fra Business Wire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra Business Wire
In Preparation for the 2019 Proxy Season, CGLytics Expands Global Coverage and Appoints New Head of Research20.2.2019 19:10:00 | Pressemelding
In recent years, increased shareholder activism and an overall heightened awareness of companies’ governance practices, has led to the need for greater transparency of exposure to governance and reputational risks. CGLytics, a leading corporate governance analytics provider, is continuing to drive transparency of good governance practices for better informed decision-making, by expanding its global coverage. Part of the expanded global coverage for its powerful, cloud-based governance platform includes an increase of company data from 3,300 to 5,500 listed companies across North America, Europe and Australia. This increase provides companies and investors with the deepest global governance data set in the market to date. For Investors, this increase in coverage will permit a substantially broader reach when analysing the potential governance risk in their portfolios, allowing for better engagement, decision-making and stewardship. Moreover, Issuers will gain a more in-depth capacity to
Payments Canada Selects SIA As the Application Provider for Canada’s New High-Value Payments System, Lynx20.2.2019 15:30:00 | Pressemelding
Payments Canada announced today the selection of SIA as the application provider for the country’s new high-value payments system, Lynx. This payments Modernization milestone is the outcome of an extensive procurement process with participation from key industry partners, including Canadian financial institutions. In April 2017, Payments Canada announced a list of suppliers invited to participate in a competitive procurement process for Lynx. This process has ended, and Payments Canada has selected SIA as the Lynx application provider, subject to negotiation of the final agreement and final regulatory approval. SIA will work closely with Payments Canada and key industry stakeholders on the next version of their Real-Time Gross Settlement (RTGS) application solution to deliver on the needs identified during consultations for the future of payments in Canada, in compliance with strict Canadian and international risk standards. SIA is well known in the global landscape as a leader in paym
Arch Capital Group Ltd. Names Janice Englesbe Senior Vice President, Chief Risk Officer20.2.2019 15:10:00 | Pressemelding
Arch Capital Group Ltd. (“Arch”) today announced that Janice Englesbe will join the Company as Senior Vice President, Chief Risk Officer (CRO) effective February 25, 2019. Ms. Englesbe will be based in Arch’s Bermuda office and report to François Morin, the Company’s Executive Vice President and Chief Financial Officer. As CRO, Ms. Englesbe will have overall responsibility for the Company’s risk management function. Additionally, she will help formulate and implement business strategies and provide comprehensive counsel to the executive leaders and board members. “Janice brings a wealth of experience and demonstrated ability to implement practical results,” Mr. Morin said. “I’m looking forward to the unique perspective and leadership she will bring to Arch.” Ms. Englesbe has over 25 years of risk and finance experience, including Group Deputy Chief Risk Officer of General Re, and has been named one of Intelligent Insurer’s 100 Influential Women in Re/insurance. She holds a bachelor’s d
Ingram Micro and MassChallenge Name Comet Competition Top B2B Startups20.2.2019 15:00:00 | Pressemelding
Ingram Micro Inc., in partnership with MassChallenge, today announced the top 12 finalists from its Tel Aviv, Austin, and Boston Comet Competition s. The finalists for this year’s inaugural competition are Verifyoo, Perimeter 81, ITsMine, EyeControl, ClearBlade, re:3D, Sempulse, The Mentor Method, Pixm Inc., addapptation, OnRout, and BOXOLOGIC.COM. Established in 2018, the Comet Competition is the only startup challenge dedicated to discovering talented B2B independent software vendors (ISVs) and accelerating their trajectory to channel market success. As Comet Competition finalists, these startups will receive go-to-market funding, unparalleled access to top corporate partners, and tailored curriculum to accelerate their success – all for zero equity. “In order to continue to be a leader in the digital economy, we need to actively search for the world’s best technology startups and catapult their trajectory to profitability and scale,” says Nimesh Davé, executive vice president, Ingra
KCI Launches ABTHERA™ Therapy in Japan20.2.2019 14:30:00 | Pressemelding
KCI, an Acelity Company, today announced the launch of ABTHERA™ Open Abdomen Negative Pressure Therapy in Japan, expanding access to the Company’s surgical portfolio in the country. ABTHERA™ Therapy is a temporary abdominal closure system that allows surgeons to take control in managing challenging abdominal wall openings where primary closure is not possible and/or repeat abdominal entries are necessary. “When dealing with patients managed with damage control for severe abdominal hemorrhage, abdominal compartment syndrome or severe peritonitis, using ABTHERA™ Therapy has been shown to be associated with proven patient outcomes,” said Dr. Demetrios Demetriades, Professor of Surgery, Keck USC School of Medicine and the Director of the USC Division of Trauma, Emergency Surgery and Surgical Intensive Care Unit. “With the introduction of ABTHERA™ Therapy in Japan, clinicians now have a clinically demonstrated solution for a previously unmet, significant need, that manages the open abdomen
ResMed and Fisher & Paykel Healthcare Announce Settlement of Global Patent Infringement Litigation20.2.2019 14:00:00 | Pressemelding
ResMed (NYSE: RMD, ASX: RMD), and Fisher & Paykel Healthcare (NZX: FPH, ASX: FPH) today announced an agreement to settle all outstanding patent infringement disputes between the companies in all venues around the world. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20190220005556/en/ The settlement involves no payment or admission of liability by either side. Under the agreement, all ongoing infringement proceedings against named products will be dismissed, and each party will bear its own attorney fees and costs incurred in the global proceedings. All other terms remain confidential. As a result of the settlement, there will be no further infringement proceedings against ResMed products, including AirSense flow generators, AirFit P10, Swift LT and Swift FX masks, and ClimateLine heated tubes; or against Fisher & Paykel Healthcare products including Simplus, Eson and Eson 2. “I am pleased we were able to resolve these dispute