SYS-CON MEDIA Authors: Elizabeth White, Zakia Bouachraoui, Liz McMillan, Janakiram MSV, Carmen Gonzalez

News Feed Item

Research from Spirent with ESG Reveals Shifting Priorities in Response to Increased Cybersecurity Complexity

Spirent Communications plc (LSE: SPT) today announced the availability of a research report conducted by Enterprise Strategy Group (ESG) that reveals a number of crucial shifts in cybersecurity priorities among enterprises. The increased complexity of the IT environment, combined with increasingly sophisticated attacks and a rapidly evolving threat landscape, is causing organizations to invest more money in cybersecurity and start to focus on the impact of cyber threats and cybersecurity from a business perspective.

One of the report’s key findings is that in many organizations (96 percent), the traditional role of the Chief Information Security Officer (CISO) has expanded. As security concerns are integrated into the planning for new digital initiatives, CISOs are more often included as active participants in enterprise business discussions. By including CISOs from the beginning, enterprises can proactively balance security and performance with operational functions such as ease of access, reliability, and a positive user experience.

The primary driver cited for the elevation of the CISO is the increasing difficulty of protecting enterprise data. Nearly 80 percent of the 413 enterprise security professionals surveyed cited the expanded volume and sophistication of malware as the main reason it is becoming is harder to protect vital information. According to the report, multiple security researchers indicate that 80–90 percent of malware attacks target a single device and 50–60 percent of malicious web domains are active for one hour or less. These trends speak to the rise of targeted attacks designed to penetrate the network of a single organization. Targeted attacks act as small needles in a large haystack, making cybersecurity practices increasingly difficult.

The second most frequently cited reason for the increase in cybersecurity difficulty is the increase in the number of company IT initiatives. Digital business projects, cloud and third-party infrastructure, and the Internet-of-Things (IoT) make security substantially more challenging. The report states, “Security teams find it difficult to learn the nuances of these technology initiatives, understand the associated risks, and implement the right security safeguards to protect their organizations.” Inserting security executives directly into the business conversation enables them to promote advances in digital business while balancing associated risk.

CISOs who are given responsibility for both business and security can address security from the very beginning of a project. A total of 86 percent of respondents agreed that applying cybersecurity to initial project planning and development can help decrease the likelihood of a security breach. Testing for both security and performance should be ongoing, from the early stages of the project through live operation. According to the report, “To ensure strong security, many InfoSec pros believe this testing should be done on a continuous rather than periodic basis.” In addition, 79 percent of those surveyed agreed that organizations should test the effectiveness of security controls more frequently.

“Security must be a proactive measure within the enterprise,” said John Weinschenk, general manager, Enterprise Network and Application security at Spirent Communications. “To meet the demands of business and the realities of threats and risk, security professionals must be actively involved with the business and integrate security considerations from the very beginning of a project.”

“Moving security leadership into business planning is rapidly becoming both a necessity and a reality,” said Jon Oltsik, senior principal analyst, ESG Research. “Enterprises must balance business considerations with security consciousness to be enablers of growth while keeping risk in check.”

Another encouraging fact from the research is that 92 percent of the organizations surveyed were planning to increase their cybersecurity budgets through 2018. The areas in which organizations were most likely to increase spending included network security, cloud security, and application security. Some of the planned increase stemmed from unifying business and security functions and the desire to treat security as an integral part of the development process, increasing the need for earlier and more frequent security testing.

In addition, the new data shows that too many organizations have an inadequate level of security staff and are particularly lacking staff with combined experience in networking and security. CISOs can help bridge these skill gaps.

The ESG Research Insights report, Cybersecurity Realities and Priorities for 2018 and Beyond, is based on a survey of 413 IT and cybersecurity professionals in the United States, the UK, and Australia who work at enterprises with more than 1,000 employees. The enterprises span a range of industries and governments, with a concentration in financial services, manufacturing, retail/wholesale, healthcare, and information technology (IT). The report is free and can be downloaded from Spirent’s web site. An on-demand webinar on the study, featuring ESG’s Jon Oltsik, is also available from Spirent.

About Spirent

Spirent Communications plc (LSE: SPT) offers test, measurement, analytics and assurance solutions for next-generation devices and networks. The company provides products, services and information for high-speed Ethernet, positioning and mobile network infrastructure markets, with expanding focus on service assurance, cybersecurity and 5G. Spirent is accelerating the transition of connected devices, network equipment and applications from development labs to the operational network, as it continues to innovate toward fully-automated testing and autonomous service assurance solutions. For more information, please visit www.spirent.com and follow us on LinkedIn, Twitter and Facebook.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Platform-as-a-Service (PaaS) is a technology designed to make DevOps easier and allow developers to focus on application development. The PaaS takes care of provisioning, scaling, HA, and other cloud management aspects. Apache Stratos is a PaaS codebase developed in Apache and designed to create a highly productive developer environment while also supporting powerful deployment options. Integration with the Docker platform, CoreOS Linux distribution, and Kubernetes container management system ...
Because Linkerd is a transparent proxy that runs alongside your application, there are no code changes required. It even comes with Prometheus to store the metrics for you and pre-built Grafana dashboards to show exactly what is important for your services - success rate, latency, and throughput. In this session, we'll explain what Linkerd provides for you, demo the installation of Linkerd on Kubernetes and debug a real world problem. We will also dig into what functionality you can build on ...
In a recent survey, Sumo Logic surveyed 1,500 customers who employ cloud services such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). According to the survey, a quarter of the respondents have already deployed Docker containers and nearly as many (23 percent) are employing the AWS Lambda serverless computing framework. It's clear: serverless is here to stay. The adoption does come with some needed changes, within both application development and operations. Th...
After years of investments and acquisitions, CloudBlue was created with the goal of building the world's only hyperscale digital platform with an increasingly infinite ecosystem and proven go-to-market services. The result? An unmatched platform that helps customers streamline cloud operations, save time and money, and revolutionize their businesses overnight. Today, the platform operates in more than 45 countries and powers more than 200 of the world's largest cloud marketplaces, managing mo...
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio a...
Containerized software is riding a wave of growth, according to latest RightScale survey. At Sematext we see this growth trend via our Docker monitoring adoption and via Sematext Docker Agent popularity on Docker Hub, where it crossed 1M+ pulls line. This rapid rise of containers now makes Docker the top DevOps tool among those included in RightScale survey. Overall Docker adoption surged to 35 percent, while Kubernetes adoption doubled, going from 7% in 2016 to 14% percent.
Technology has changed tremendously in the last 20 years. From onion architectures to APIs to microservices to cloud and containers, the technology artifacts shipped by teams has changed. And that's not all - roles have changed too. Functional silos have been replaced by cross-functional teams, the skill sets people need to have has been redefined and the tools and approaches for how software is developed and delivered has transformed. When we move from highly defined rigid roles and systems to ...
Even if your IT and support staff are well versed in agility and cloud technologies, it can be an uphill battle to establish a DevOps style culture - one where continuous improvement of both products and service delivery is expected and respected and all departments work together throughout a client or service engagement. As a service-oriented provider of cloud and data center technology, Green House Data sought to create more of a culture of innovation and continuous improvement, from our helpd...
Docker and Kubernetes are key elements of modern cloud native deployment automations. After building your microservices, common practice is to create docker images and create YAML files to automate the deployment with Docker and Kubernetes. Writing these YAMLs, Dockerfile descriptors are really painful and error prone.Ballerina is a new cloud-native programing language which understands the architecture around it - the compiler is environment aware of microservices directly deployable into infra...
The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long development cycles that produce software that is obsolete at launch. DevOps may be disruptive, but it is essential. DevOpsSUMMIT at CloudEXPO expands the DevOps community, enable a wide sharing of knowledge, and educate delegates and technology providers alike.
Public clouds dominate IT conversations but the next phase of cloud evolutions are "multi" hybrid cloud environments. The winners in the cloud services industry will be those organizations that understand how to leverage these technologies as complete service solutions for specific customer verticals. In turn, both business and IT actors throughout the enterprise will need to increase their engagement with multi-cloud deployments today while planning a technology strategy that will constitute a ...
The platform combines the strengths of Singtel's extensive, intelligent network capabilities with Microsoft's cloud expertise to create a unique solution that sets new standards for IoT applications," said Mr Diomedes Kastanis, Head of IoT at Singtel. "Our solution provides speed, transparency and flexibility, paving the way for a more pervasive use of IoT to accelerate enterprises' digitalisation efforts. AI-powered intelligent connectivity over Microsoft Azure will be the fastest connected pat...
While more companies are now leveraging the cloud to increase their level of data protection and management, there are still many wondering “why?” The answer: the cloud actually brings substantial advancements to the data protection and management table that simply aren’t possible without it. The easiest advantage to envision? Unlimited scalability. If a data protection tool is properly designed, the capacity should automatically expand to meet any customer’s needs. The second advantage: the ...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
As you know, enterprise IT conversation over the past year have often centered upon the open-source Kubernetes container orchestration system. In fact, Kubernetes has emerged as the key technology -- and even primary platform -- of cloud migrations for a wide variety of organizations. Kubernetes is critical to forward-looking enterprises that continue to push their IT infrastructures toward maximum functionality, scalability, and flexibility. As they do so, IT professionals are also embr...