Almost nine in ten CISOs surveyed (87%) claim that mobile devices have become the focal point of their cybersecurity strategies, according to a new study commissioned by Ivanti. Four in five CISOs (80%) stated that passwords are no longer an effective means of protecting enterprise data, as hackers are increasingly targeting remote workers and mobile devices.
The study commissioned by automation platform provider Ivanti, which polled 400 CISOs across EMEA, found 82% of respondents agree that remote work has accelerated the demise of the traditional network perimeter, and has subsequently given rise to a host of new IT security challenges.
Today, the main challenges that CISOs face involve ensuring only trusted users, devices, networks, and apps can access company data:
- Almost half (45%) of respondents cited employees leveraging unsecured WiFi to access business resources as a top IT security challenge during the pandemic
- Two-fifths (40%) of CISOs cited employees using their own devices to access corporate data as a top IT security challenge
- One-third (33%) cited employees using unauthorized apps to access corporate data as a top IT security challenge
Nearly all CISOs (93%) stated that they had effective solutions in place to enable the unexpected shift to remote work at the start of the pandemic. Nearly all CISOs (92%) also stated they need additional IT security measures to better enable remote workers and address the new mobile threat landscape.
Mobile Threat Detection
Looking ahead, almost two-thirds of CISOs (64%) plan to invest in mobile threat detection software. And more than half (58%) noted that enhancing user experiences, improving authentication to remote applications (57%), and moving critical business applications to the cloud (52%) will be top priorities this year.
“The pandemic has acted as a catalyst for CISOs to ensure that working from anywhere, on any device, is just as safe as working from the office, on a corporate-owned laptop,” said Nigel Seddon, Vice President of EMEA West at Ivanti. “The emergence of the everywhere enterprise – where IT infrastructures are everywhere, and distributed employees need access to corporate data everywhere – has dramatically changed the role of the CISO and put mobile device security firmly under the spotlight. CISOs must now place greater emphasis on enabling, securing, and optimizing mobile work environments. Every CISO should urgently adopt a zero-trust security strategy to ensure only trusted users can access corporate data and invest in automation technologies that can discover, manage, secure and service all endpoints, devices, and data in the everywhere enterprise. They must assume their corporate networks have already been compromised and leverage technologies that can proactively detect threats, and self-heal and self-secure devices. To further reduce the attack surface, CISOs should eliminate passwords in favor of password-less authentication. In doing so, they will also ensure that remote workers enjoy a seamless and secure user experience.”
Ivanti is headquartered in Salt Lake City, Utah and has offices all over the world. The Ivanti automation platform would make IT connection smarter and more secure across devices, infrastructure and people. From PCs and mobile devices to virtual desktop infrastructure and the data center, Ivanti helps discover, manage, secure and service IT assets from cloud to edge in ‘the everywhere enterprise.’