Insider risks disrupting the digital enterprise; IDC
IDC research finds insider risk and budget constraints add to enterprise security hazards
International Data Corporation (IDC) conducted an IT survey covering Middle East organisations and found the top threat to enterprise security is insider threat.
IDC identified that infected USB drives, data theft by employees and advanced persistent threats, as well as users not realising they are bringing in infected devices, contribute to security threats in the workplace.
"Advanced persistent threats can go undetected for long periods of time, which adds to the complexity of the challenge," said Megha Kumar, senior research manager for software at IDC Middle East, Africa, and Turkey.
"Increasing the levels of awareness and proactivity around security is critical for organisations across the GCC. Financial motivation continues to drive cyber-crime activity in the region, although so-called 'hacktivist' incidents are compounding the situation with websites now also being defaced simply to drive a particular political agenda. The implications of such incidents are far reaching, not just from a financial perspective but also from a regulatory and reputational point of view."
At IDC's IT Security Roadshow in Bahrain, speakers discussed that security is critical but not only for securing enterprise data but it also acts as a major facilitator of the digital transformation process. Speakers also discussed that organisations must remain resilient in the face of increasingly challenging economic conditions and take a proactive approach to security.
"Budget constraints are likely to remain a challenge for the foreseeable future in Bahrain," added Kumar. "But the security conundrum becomes even more challenging when organisations start downsizing their headcounts in a bid to free up much-needed resources. In such a scenario, the threat of insider risk is exacerbated as disgruntled employees leave the company, potentially taking sensitive corporate information with them. As such, data loss prevention, data access management, and governance are all major security factors that must be addressed in order to avert any unwanted drama."
With all this in mind, IDC expects organisations in Bahrain to seek out IT solutions that help improve their cost and operational efficiencies. And as they increasingly look to exploit innovative new business models and services, they will inevitably move into far more open, digitally-enabled ecosystems.
IDC believes that cyber-security and privacy solutions will become one of the major technological drivers of successful digital transformation strategies, but businesses must first undertake a proper risk assessment to discover precisely where they can be compromised.