Organizations still struggle to manage foundational security

2020-03-19 05:00

"This research demonstrates that despite heightened compliance focus, businesses struggle to manage foundational security like PKI and the tools and processes that maintain it. This is concerning, especially as the number of digital certificates and keys within enterprise continues to multiply," said Chris Hickman, CSO at Keyfactor.

"A lack of program ownership, combined with the constant care and feeding that digital identities need, has introduced new risk, creating an exposure epidemic. Unless leaders invest in in-house processes and outsourced resources to manage PKI, enterprise will risk failed audits, fines and worse, a security breach."

Foundational security: Additional findings A rise in security incidents: on average, organizations experienced a Certificate Authority or rogue man-in-the-middle and/or phishing attack four times in the last 24 months, facing a 32% likelihood of a MITM or phishing attack over the next 24 months.

Staffing shortages: on average, 15% of IT security budget is spent on PKI deployment annually, yet just 43% of respondents say their organisation has enough IT security staff members dedicated to PKI deployment.

Spending trend: represented organizations are spending an average of £9.37M on IT security annually, with £1.37M dedicated to PKI..

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/3bLaRPl0qfs/

#security