This post is also available in: עברית (Hebrew)
What is the role of governments in the cybersecurity of organizations and companies? What is the extent of interference required? A new report from security and compliance firm Tripwire finds that security professionals in the US are receptive to the idea of more regulation by the federal government in the interest of improving overall organizational cyber defenses.
The report surveyed over 300 IT security professionals in September, all working for organizations with at least 1,000 employees. 103 worked for a federal government agency.
Among the results: Security professionals broadly support stronger standards from the National Institute of Standards and Technology (NIST), and expansion of them to include industries that previously were not subject to them.
They also support a broad rollout of “zero trust” architecture. However, they also want to see the federal government lead by example — 99% feel that federal agencies are not doing enough to protect their own data and systems.
Though security professionals are on board with NIST standards, they report that their organizations are slow in getting into compliance with them. Only about 49% of all non-federal government entities and only 46% of critical infrastructure organizations have fully adopted NIST standards.
While federal government security professionals are more likely to think they are doing a better job than the private sector, confidence in general is not high. 12% of these respondents said they thought their agency was falling behind in online security, and 59% said that they were barely keeping pace with the threat landscape, according to cpomagazine.com.
Prepared to dive into the world of futuristic technology? Attend INNOTECH 2022, the international convention and exhibition for cyber, HLS and innovation at Expo, Tel Aviv, on November 2nd – 3rd
Interested in sponsoring / a display booth at the 2022 INNOTECH exhibition? Click here for details!