Check Point has released the findings of a new survey, which shows organizations’ key cyber-security priorities and challenges through to 2023, and highlights the changes to their security strategies forced by the COVID-19 pandemic during 2020.
Over half of respondents said their organizations are seeing more attacks and threats now than at the start of 2020. The majority believe their approach to security will not return to its pre-pandemic state, with just one in five saying that their security operations have returned to what they were.
Protecting cloud applications
Key findings from the survey of over 600 IT security professionals globally are:
- Organizations’ biggest security challenges going into 2021: Security for employees working remotely is the challenge (cited by 47%), followed by preventing phishing and social engineering attacks (42%), maintaining secure remote access (41%), and protecting cloud applications and infrastructure (39%).
- Security priorities for the next two years: The priorities through to 2023 are securing remote working, endpoint and mobile security, and securing public or multiple clouds, clearly ahead of issues such as IoT security and email security.
- 2020’s shift in security strategies: 95% of respondents said their strategies had changed in the second half of the year, the biggest being enabling remote working at scale. Only just over a quarter said they had accelerated existing security projects during 2020, showing that for the majority, their pandemic response involved an unplanned re-invention of their business model.
- The new normal is here to stay: About half of all respondents believed that their approach to security will not return to pre-pandemic norms. While 29% said that they expect a return to pre-COVID operations at some point in the future, and just 20% believed their situation has now returned to what it was.
Current security issues
“The survey shows that a majority of organizations do not expect their current security issues and priorities to change much over the next two years. For many, the rapid changes they made to their networks and security infrastructures in response to the pandemic will be permanent,” said Peter Alexander, Chief Marketing Officer at Check Point Software.
Cyber-attacks and threats are increasing as hackers try to take advantage of those changes
“At the same time, cyber-attacks and threats are increasing as hackers try to take advantage of those changes. So organizations need to prioritize closing off any security gaps across their new distributed networks, from employees’ home PCs and employees themselves to the data center. Dealing with the impact of the pandemic on business operations, and ensuring they can continue to operate as efficiently and as securely as possible will be the biggest ongoing challenge for most enterprises.”
To block the growing volumes of cyber-attacks and threats, organizations need to prioritize closing off any security gaps across their new distributed networks, from employees’ home PCs and employees themselves to the data center.
Here are some tips to help organizations evolve their security strategies to ensure they can continue to operate as efficiently and as safely as possible:
- Protective vaccination is better than treatment, and in cyber security, real-time prevention is the key to protecting networks, employees and data against attacks and threats.
- Organizations must revisit and check the security level and relevance of their network’s infrastructure, devices, processes, compliance of connected mobile and PC devices, IoT and more. The increased use of the cloud demands an increased level of security, especially in technologies that secure workloads, containers, and serverless applications on multi- and hybrid-cloud environments.
- With so many rapid changes made to organizations’ infrastructures, enterprises´ security effectiveness will be dramatically improved with a unified management and improved risk visibility on their entire security architecture.
The survey was conducted by Dimensional Research, with 613 respondents from organizations globally. All respondents have responsibility for IT security within their organizations.