IT Professionals’ Security Concerns Extend Beyond Hackers
Sungard AS survey finds risky employee behavior and need for greater cloud security as top worries
Wayne, Pa. – March 3, 2015 – IT professionals believe their organizations aren’t doing enough to protect critical data and systems, found a survey commissioned by Sungard® Availability Services™ (Sungard AS) – a leading provider of information availability through managed IT, cloud and recovery services.
What is triggering this belief? Poor employee security behavior – such as bad password “hygiene” and overall security awareness – and the need for greater cloud security rise to the top of the list. These two diverse concerns tell us one glaring fact: security is a threat from all angles, even if unintentional.
Employees unknowingly sabotaging security
One misconception when it comes to organization security is that threats typically come from outside an organization. The truth is, many security breaches originate from within the walls of a business and are driven by ignorance.
IT professionals point blame on their colleagues for one of the biggest threats to their organization’s overall security. Nearly two-thirds (62%) of survey respondents ranked leaving laptops and mobile phones in vulnerable places as their organization’s most common security threat, followed by employee password sharing (51%).
Concerning password hygiene, respondents say the most important components to a password’s health relate to avoiding adjacent keyboard combinations – such as “qwerty” – and to changing passwords often and using a password just once.
The importance of stringent security plans in all areas of an organization – from employee personal devices to cloud platforms – is vital in today’s “always-on” world where security threats change daily. In this environment, internal penetration testing, where an ethical hacker attempts to gain access to a company’s systems, can be one way of ensuring IT security and resiliency.
Cloud security: Critical factor, yet overlooked
Concerning the health of an organization’s IT infrastructure, three-out-of-four (76%) IT professionals believe their organizations could do more to improve cloud security. More than half (54%) of respondents say security is the most critical factor for companies to consider when making the decision to move to the cloud. Yet, it’s also the most overlooked.
“Too often, IT managers fail to ask cloud providers the targeted security questions that will help them create a strong cloud transformation plan and a sustainable security plan after go-live,” maintains Matt Goche, director, Security Consulting at Sungard AS. “Our data reveals a disconnect. People know cloud security is important but aren’t taking the necessary precautions to safeguard their organization’s resiliency.”
The surveyed IT professionals recognize this disconnect and agree there needs to be an increased emphasis placed on security in the cloud. The majority of respondents identified security as the one factor given insufficient attention when making the decision to move to the cloud, followed by vendor support and cloud-based disaster recovery.
“The writing is on the wall. IT professionals – beyond those who focus solely on security – are worried about internal and external threats that could put their organization in a compromising position,” concluded Goche.
The survey, conducted by SurveyMonkey Audience for Sungard AS, reached 276 IT professionals and was completed in December 2014.
About Sungard Availability Services
Sungard Availability Services ("Sungard AS") is a leading provider of critical production and recovery services to global enterprise companies. Sungard AS partners with customers across the globe to understand their business needs and provide production and recovery services tailored to help them achieve their desired business outcomes. Leveraging more than 40 years of experience, Sungard AS designs, builds and runs critical IT services that help customers manage complex IT, adapt quickly and build resiliency and availability. To learn more, visit www.sungardas.com or call 1.866.714.7209. Connect with us on Twitter, LinkedIn and Facebook.
Sungard Availability Services
Sungard Availability Services is a trademark or registered trademark of SunGard Data Systems or its affiliate, used under license. The Sungard Availability Services logo by itself is a trademark or registered trademark of Sungard Availability Services Capital, Inc. or its affiliate. All other trade names are trademarks or registered trademarks of their respective holders.
The abbreviation for Sungard Availability Services is 'Sungard AS' as cited above. Please use 'Sungard AS' when abbreviating the name rather than 'Sungard' or 'SunGard', which may confuse the reader with another separate company with a similar name.