Many IT and security operations managers have challenges in delivering a comprehensive information security approach, including inter-department coordination, endpoint security technology integration, and resources, reveals Futuriom's two-month study on integrated systems and security operations (SysSecOps) strategy.
The ”Endpoint Security and SysSecOps: The Growing Trend to Build a More Secure Enterprise” report found that 65% of respondents wanted "better management of budgets across department/silos" and 55% wanted "Better protection of endpoints." The top challenges included lack of time/resources (71%) and business unit resistance (35%).
When the survey results are put into the context of a review of the major cited causes of recent security breaches, it's clear that IT staff, security operations, and executive management need to work together better to create an integrated SysSecOps plan that starts with better endpoint protection, concludes the report.
"The findings show that it's not just about building better endpoint security technology -- which is certainly needed -- but it's also about executive leadership of an integrated SysSecOps plan," said Futuriom Founder and Principal Analyst R. Scott Raynovich, the author of the report.
The report also reveals thatintegrated security visibility is a top challenge. Fifty-three percent of the IT and security respondents (including IT system admins, security specialists, hardware specialists, network admins, executive managers, and others), indicated a “Challenge in integration of many security tools” as a major challenge of securing their endpoint environments.
Respondents to the survey also see endpoint security technology as key, with 55% demanding better protection of endpoints as a top security goal.
A look at the major hacking events of the past five years shows that many breaches were flagged by technology – the failure came with human response.
When asked, “What would be the most helpful in improving IT security in your organization?”, end users selected “Better integration between systems management and security operations tools,” as one of the most helpful approaches.
A majority of the respondents to the survey (71%) said they lack time and resources to secure the environment. Thus, more efficient and prioritized operations would help.
Management isn’t always on the same page. Thirty-seven percent of the survey end users say conflicting IT and security goals prevented them from achieving their goals.
Another finding is that current endpoint tools may still be inadequate. Many end users say despite the plethora of security and visibility tools at their disposal, better tools are needed.
Meanwhile, malware and phishing remain major threats. The Verizon Data Breach Investigations Report puts malware and phishing as the cause of 51% of cyberattacks, underscoring the importance of coordinated systems and security operations.