Q1 Which of the following best describes your job function?

Transcription

1 Q1 Which of the following best describes your job function? Answ ered: 116 Skipped: 38 Managing Director Chief Information Officer Netw ork Engineer IT Manager IT Director IT Security Manager/Offic er Risk/Complian ce Manager Managing Director Chief Information Officer Network Engineer IT Manager IT Director IT Security Manager/Officer Risk/Compliance Manager 9.48% % % % % % % 2 Total / 14

2 Q2 What is your approximate company size? Answ ered: 153 Skipped: 1 Small to medium size ( Mid-sized ( employees) Large enterprise ( Small to medium size (1-200 employees) Mid-sized ( employees) Large enterprise (500+ employees) 40.52% % % 61 Total / 14

3 Q3 Thinking about Security in relation to your organisation s IT Infrastructure do you agree or disagree with the following statements? Answ ered: 152 Skipped: 2 IT security is increasing in importa... Our understanding and expert... Employees in the organisati... Agree Neither Agree nor Disagree Disagree Don t know Agree Neither Agree nor Disagree Disagree Don t know Total IT security is increasing in importance in our organisation 86.09% % % 4 0% Our understanding and expertise of emerging security threats and technologies is sufficient 31.58% % % % Employees in the organisation are made highly aware of the risk of internet threats 52.67% % % 31 0% / 14

4 Q4 Security and IT infrastructure: do you agree or disagree with the following statements? Answ ered: 152 Skipped: 2 We activ ely monitor and report on... Employees hav e access to all par... An explicit budget for security... Agree Neither Agree nor Disagree Disagree Don t know Agree Neither Agree nor Disagree Disagree Don t know Total We actively monitor and report on the security of our IT infrastructure 71.14% % % % Employees have access to all parts of the internet in our organisation 17.33% % 7 78% 117 0% An explicit budget for security issues is made available 31.13% % % % / 14

5 Q5 Security and IT infrastructure: do you agree or disagree with the following statements? Answ ered: 152 Skipped: 2 Our company s ability to... Security breaches hav e occurred i... Our company has considered... Agree Neither Agree nor Disagree Disagree Don t know Agree Neither Agree nor Disagree Disagree Don t know Total Our company s ability to actively detect cyber security incidents in advance is adequate 32.24% % 60 25% % Security breaches have occurred in our organisation over the past 12 months 16.11% % % % Our company has considered cyber insurance as part of our IT strategy 12.67% % % % / 14

6 Q6 Which of the following security technologies does your organisation use, and which are managed internally, or externally by a service provider? Answ ered: 153 Skipped: 1 Firew alls Intrusion Detection/Pre v ention... Web Content Filtering Filtering / Anti-spam Anti-Virus/An ti-malw are Virtual Priv ate Netw ork (VPN) Dual Factor Authenticatio n 6 / 14

7 Data Loss Prev ention (DLP) Security Incident &Ev ent... Other Managed Internally Managed Externally Not in use Managed Internally Managed Externally Not in use Total Firewalls 79.47% % % Intrusion Detection/Prevention System (IDS/IPS) 62.33% % % Web Content Filtering 70.20% % % Filtering / Anti-spam 65.33% % % Anti-Virus/Anti-Malware 88.67% % 17 0% Virtual Private Network (VPN) 76.35% % % Dual Factor Authentication 43.88% % % Data Loss Prevention (DLP) 43.88% % % Security Incident &Event Management (SIEM) 46.48% % % Other 5.13% % % / 14

8 Q7 Would your organisation consider purchasing security as a managed service from a Managed Service Security Provider (MSSP)? Answ ered: 152 Skipped: 2 Yes No Yes No 48.03% % 79 Total / 14

9 Q8 If you answered no Q7, what is the primary reason why? Answ ered: 77 Skipped: 77 We hav e the expertise in-house t... Lack of understanding around the... Data priv acy issues prev ent us... Lack of av ailable budget We have the expertise in-house to keep up with emerging threats Lack of understanding around the capabilities of MSSPs Data privacy issues prevent us from outsourcing security Lack of available budget 45.45% % % % 17 Total 77 9 / 14

10 Q9 How would you rate your organisation s current overall of visibility of this infrastructure? Answ ered: 150 Skipped: 4 Very Good Good Fair Poor Very Poor Very Good Good Fair Poor Very Poor 18% 27 50% 75 24% % % 2 Total / 14

11 Q10 What technologies do you presently use to monitor this infrastructure? (select all that apply) Answ ered: 136 Skipped: 18 SIEM (Security Incident &... Netw ork Monitoring Log analysis tools (Splunk etc) SIEM (Security Incident & Event Management) Network Monitoring Log analysis tools (Splunk etc) 30.15% % % 56 Total Respondents: / 14

12 Q11 What shortcomings, if any, do you see with your present monitoring infrastructure? Answ ered: 136 Skipped: 18 None Lack of granularity Lack of compatibility Ov erly complex Ov erly expensiv e None Lack of granularity Lack of compatibility Overly complex Overly expensive 25.74% % % % % 27 Total Respondents: / 14

13 Q12 Would you considering purchasing IT Security Monitoring from an external managed service provider? Answ ered: 152 Skipped: 2 Yes No Don t know Yes No Don t know 45.39% % % 32 Total / 14

14 Q13 Please leave your so we can contact you in the event you win our prize. Your is used for this purpose only, it is not passed to any third parties. Thank you for taking the time, look out for the results published in ComputerScope's December issue & good luck! Answ ered: 144 Skipped: 10 Name 100% % / 14