It comes as a surprise to no one that information security pros have strong opinions. So each year STEALTHbits puts out their floor survey and the results come pouring in. 2017 was no exception. We’re excited to announce the “5 Trends for Security Professionals”, which you can get here. This year’s report breaks down 5 trends we saw in the responses and attempts to connect those to the larger threads of thought in the security world today. I won’t steal all the thunder here, but I will give you a little taste of some of the interesting bits.
One of the things we do every year with the survey is ask about what the RSA attendees see as the greatest threat to their organization’s data. This year four of those jumped in focus by double or more than in years past. Malware was one of these and, considering the headlines lately, this is hardly a surprise. It’s always been a bit surprising it wasn’t at these levels in the past already. More surprising is the huge jump in concern over human error. Personally, I have always seen human error as a background element. Like the weather, you can’t change it, you can only prepare and mitigate for its effects. Of course, with so much more on the line and new challenges looming for the impact of data security, maybe folks are a little more worried than they used to be about that human lightning strike taking out their data.
Speaking of new challenges, one of the other interesting trends was how much folks wanted to talk about EU GDPR. With lots of scary articles yelling about the potential for huge fines, it’s no wonder. What we want to know, however, is how many organizations impacted by the upcoming regulations about EU citizen data are getting ready. The surprising thing is that 33% said they are not yet preparing. With the regulations ready to come into force on May 25th of 2018, it boggles the mind a big that they wouldn’t be taking advantage of the time to get ready. Doubly so since much of what EU GDPR is asking for are means to and end for those seeking to pad security budgets.
For more data, more on these ideas, and a few we didn’t get to here, have a look at the report.