LOADING

Type to search

Åtta av tio företag utsatta för dataförlust förra året enligt undersökning från Check Point

Åtta av tio företag utsatta för dataförlust förra året enligt undersökning från Check Point

Share

Stockholm – Säkerhetsföretaget Check Point® Software Technologies Ltd och det oberoende undersökningsföretaget Ponemon Institute kan tillsammans presentera resultaten från en global undersökning som visar att företag står inför allt större utmaningar när det kommer till att hantera datasäkerhet, regelefterlevnad och bristande medvetenhet hos användarna. Så många som 77 procent av de tillfrågade organisationerna har utsatts för dataförlust under det senaste året.

Resultaten från rapporten* visar att de tillfrågade anger kundinformation (52 procent) som den vanligaste typen av information som ligger i riskzonen för läckor, tillsammans med immateriella tillgångar (33 procent), uppgifter om anställda (31 procent) och företagens planer (16 procent).

Enligt undersökningen är den främsta orsaken till dataförlust borttappad eller stulen utrustning, följt av nätverksattacker, osäkra mobila enheter, Web 2.0 och fildelningsapplikationer eller att någon råkar skicka mejl till fel mottagare. Nästan hälften, omkring 49 procent, av alla respondenter tror dessutom att deras anställda har liten eller ingen kännedom om företagets policy för data- och informationssäkerhet.

– Det här har säkerligen IT-cheferna koll på, men de allra flesta läckorna sker omedvetet utan uppsåt från de anställda. För att höja säkerheten måste företag därför se bortom tekniken och aktivera användarna på ett nytt sätt genom att höja medvetenheten kring dagens säkerhetsutmaningar och erbjuda en förbättrad kontroll, säger Lars Berggren, försäljningschef på Check Point Sverige.

Eftersom Data Loss Prevention (DLP) är en av de främsta utmaningarna för informationssäkerhet, är det viktigt att förstår de vanligaste orsakerna till dataförlust och fastställa säkerhetskrav och bästa praxis för att förhindra överträdelser. Sådana kan till exempel vara att:

  • Förstå organisationens datasäkerhetsbehov
  • Klassificera känsliga data
  • Anpassa säkerhetspolicy efter företagets behov
  • Säkra data under hela dess livscykel
  • Eliminera betungande regelefterlevnad
  • Uppmuntra användarnas delaktighet och engagemang

 

*) Den oberoende undersökningen ”Understanding Security Complexity in 21st Century IT Environments” genomfördes av Ponemon Institute i februari 2011, med IT-säkerhetsadministratörer i USA, UK, Frankrike, Tyskland och Japan på företag i alla storlekar och från 14 olika branscher inklusive finans, industri, försvar, handel, hälsovård, och utbildning. Läs mer i den bifogade rapporten. 

För frågor och mer information, kontakta:
Lars Berggren, försäljningschef på Check Point Sverige, 070-667 95 10, larsb@checkpoint.com 

Ytterligare information om undersökningen, Ponemon Institute och [i]Check Point DLP Software Blade [/i]vänligen se det fullständiga pressmeddelandet på engelska nedan.

—————————————————————————————————————–

CHECK POINT AND PONEMON SURVEY REVEAL 77% OF BUSINESSES EXPERIENCED DATA LOSS LAST YEAR

Global survey shows businesses face rising challenges with managing data security, compliance and lack of user awareness                                                                                

REDWOOD CITY, Calif.  Check Point® Software Technologies Ltd. (Nasdaq: CHKP), the worldwide leader in securing the Internet, and the Ponemon Institute, a leading privacy and information management research firm, today revealed that 77 percent of organizations surveyed have experienced data loss in the last year. Key findings from the report, Understanding Security Complexity in 21st Century IT Environments, show respondents cited customer information (52%) as the most common type of information compromised – in addition to intellectual property (33%), employee information (31%) and corporate plans (16%). With the adoption of Web 2.0 applications and more mobile devices connecting to the network, organizations are challenged with enforcing better data security and IT Governance, Risk and Compliance (GRC) requirements.

According to the survey of over 2,400 IT security administrators, the primary cause for data loss resulted from lost or stolen equipment, followed by network attacks, insecure mobile devices, Web 2.0 and file-sharing applications and accidentally sending emails to the wrong recipient. In addition, approximately 49 percent of all respondents believe their employees have little or no awareness about data security, compliance and policies – encouraging business to integrate more user awareness into their data protection strategies, as people are often the first line of defense.

”We understand that data security and compliance are often at the top of the CISO’s list. However, if you look at the drivers for data loss, the majority of incidents are unintentional,” said Oded Gonda, vice president of network security products at Check Point Software Technologies. ”In order to move data loss from detection to prevention, businesses should consider integrating more user awareness and establish the appropriate processes to gain more visibility and control of information assets.”

With Data Loss Prevention (DLP) as a top information security challenge, it’s important for businesses to understand the key issues driving data loss and establish a set of security best practices to prevent a breach, for example:

Understand the Organization’s Data Security Needs – Have a clear view and record of the types of sensitive data that exist within the organization, as well as which types of data are subject to government or industry-related compliance standards.

Classify Sensitive Data – Begin by creating a list of sensitive data types in the organization and designating the level of sensitivity. Consider establishing a set of document templates to classify data by Public, Restricted or Highly Confidential – creating more end user awareness about corporate policies and what constitutes sensitive information.

Align Security Policies with Business Needs – An organization’s security strategy should protect the company’s information assets, without inhibiting the end user. Start by defining company policies in simple business terms that are aligned with individual employee, group or organization’s business needs. Identity awareness solutions can provide companies with more visibility of their users and IT environment, in order to better enforce corporate policy.

Secure Data Throughout Its Lifecycle – Businesses should consider implementing data security solutions that secure their sensitive data in multiple forms – correlating users, data types and processes – and protect it throughout its lifecycle: data-at-rest, data-in-motion, and data-in-use.

Eliminate the Compliance Burden – Evaluate government and industry-driven compliance mandates and how they impact an organization’s security and business flow. Consider implementing solutions with best practice policies customized to meet specific regulations, including HIPAA, PCI DSS and Sarbanes Oxley, for fast prevention on day one. Best practice policies also enable IT teams to focus on proactively protecting data beyond what’s required.

Emphasize User Awareness and Engagement -Involve the user in the security decision process. Technology can help educate users about corporate policies and empower them to remediate security incidents in real-time. Combining technology and user awareness sensitizes employees to risky behavior through self-learning techniques. 

”With hundreds of data loss incidents every year – both reported and unreported – it’s no surprise the issues with governance, risk and compliance are being magnified,” said Dr. Larry Ponemon, chairman and founder, Ponemon Institute. ”Data security in a modern day world means more than deploying a set of technologies to overcome these challenges. In fact, the lack of employee awareness is a primary cause in data loss incidents and is encouraging more businesses to educate their users about corporate policies in place.”

The Check Point DLP Software Blade is based on the company’s Software Blade ArchitectureT. With a unique combination of technology and user awareness, Check Point helps businesses pre-emptively protect sensitive information from unintentional loss. With its unique UserCheckT technology, Check Point DLP goes beyond technology to educate users on proper data handling policies and empowering them to remediate incidents in real-time.

The survey, Understanding Security Complexity in 21st Century IT Environments was independently conducted by the Ponemon Institute in February 2011, surveying IT security administrators located in the U.S., U.K. France, Germany and Japan. The survey sample represents organizations of all sizes and across 14 different industries. For more information about Check Point DLP or access to the full report, visit: http://www.checkpoint.com/products/dlp-software-blade/index.html

”At Check Point, we look at data loss prevention as a strategy, not a science – and we are committed to ensuring our customers have the tools and protection needed to prevent and remediate breaches, before they occur,” concluded Gonda.

About the Ponemon Institute
The Ponemon Institute© is dedicated to advancing responsible information and privacy management practices in business and government. To achieve this objective, the Institute conducts independent research, educates leaders from the private and public sectors and verifies the privacy and data protection practices of organizations in a variety of industries.

Pressreleasen kommer från: Newsdesk

Leave a Comment

Your email address will not be published. Required fields are marked *