“Organisations should adopt Zero Trust model for cyber security” finds Unisys Survey

Research results from the Unisys Corporation find that IT professionals reported three incidents on average where sensitive information had been lost last year, with some respondents reporting 11 losses for the year. Respondents also reported an average of nine incidents per month where they had to address highly severe security issues.

The survey, conducted by information insights company the Information Services Group (ISG), asked 404 enterprise IT professionals in Europe, North America and the Asia Pacific region to assess their security operations. The findings illustrate high levels of awareness among respondents of their challenges as well as the need to establish digital trust with their customers as they transform their businesses to cloud and mobile platforms.

As a result of these findings, ISG is forecasting that 60% of businesses globally will suffer a major service failure due to the new security issues introduced by shifting workloads to the cloud and enabling mobile and remote employees. Further, the research indicates that, between 2016 and 2020, on-premises workloads will decline from 55% to 20% of all workloads.

Zero Trust model

To address the challenges associated with digital trust, Unisys recommends the adoption of the Zero Trust model – an approach to security that recognises threats emanate not only from outside the perimeter, but also from malicious insiders within trusted zones. The Zero Trust approach of granting least privileged access to all users requires a combination of micro-segmentation and security services such as security information and event management (SIEM), endpoint protection and risk assessment, thereby eliminating the need to buy new gear, rip and replace or add complexity to an already unwieldy architecture.

“In the era of digital transformation, security professionals recognise that digital trust is table stakes – a requirement that, if not met and delivered as part of the experience for stakeholders of the enterprise’s value chain, will upend organisations everywhere,” said Doug Saylors, research director at ISG. “Enterprises that are first to adopt and leverage digital trust fabrics will realise competitive advantages driven by combinations of deeper customer intimacy, operational excellence and product leadership.”

Need to address threats

The survey showed that IT professionals recognise the need to address threats coming from outside their enterprises as well as the need to create security-focused cultures within them.

When asked to choose from among 12 IT security challenges at their enterprises, the top challenge was external threats, as selected by 43% of respondents. It was followed by security challenges related to 24×7 operations (selected by 36%) and challenges related to legacy technologies (selected by 34% of interviewees).

“Trust in digital business is earned during every digital interaction with the enterprise,” explained Tom Patterson, chief trust officer at Unisys. “This means establishing strong bonds of trust throughout their ecosystems of employees, partners, suppliers and customers. By operating resistant and resilient systems, establishing trusted identities and focusing passionately on client success, it’s possible to make trust your critical success factor.”

*To read a White Paper based on the ISG report visit http://outreach.unisys.com/DigitalTrust

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.

Related Posts