1. Security is not important - client perception Security
is adequate
22% of SMB 1-99
15% of Medium 100 - 499
17% of Larger 500+
Drivers of Changing Security Approach
47% Change in IT operations
43% Reports of security breaches34% Knowledge gained from training
29% Vulnerability Audit
29% Security Breach
2. So Many Moving Parts
Complicating Factors
54% Growing organization of hackers52% Greater tech inter connectivity
52% Sophistication of security threats
48% Greater availability of hacking tools 45% a Volume of Social Media 44% more reliance on internet apps
38% Legacy apps
Experiences with Data Loss
29% Definitely23% Probably
48% No or Don't know
Mobile Security Incidents
32% Lost Device31% Employee disabling security features
30% Mobile Malware
3. Up-front Planning
Balancing Risk and Security
34% Too much risk
58% Appropriate risk
6% Security too stringent
Dealing with Regulations
50% Fully aware
36% Mostly aware
14% Somewhat aware /unsure
Effort involved with compliance
54% High39% Moderate
8% Low
4. Keeping people
out of trouble
Human Element a Major Part of Security Risk52% Human error
48% Technology error
Top issue is end user but IT complacency as well
The State of Security policy50% Comprehensive
30% Policy in Place but needs work
21% working on policies
9% No plan