A new poll by MIT Technology Review Insights, in association with Palo Alto Networks, uncovers the complex challenges Asia-Pacific companies face in securing networks and systems for remote workers in the post-pandemic era.
In this new cybersecurity landscape, conducting a full inventory of internet-connected digital assets—from laptops to cloud applications—and rebooting cybersecurity policies for today’s modern remote work environment can mitigate risks. But organisations must also understand the cybersecurity trends and challenges that define their markets, many of which are unique to organisations operating in the Asia-Pacific region.
Fifty-one per cent of respondents have experienced a cyberattack originating from a digital asset they did not know about or did not manage and 16 per cent expect such an attack eventually. Unique challenges such as varied cyber maturity across the region and being unprepared to pivot to remote work during the pandemic have heightened the urgency to establish cybersecurity strategies. Forty-three per cent of respondents report that more than half of their digital assets are in the cloud. Well-funded and well-organised hackers and the fast-evolving nature of technology are forcing organisations to consider multiple ways to secure their cloud environments and monitor digital assets. Organisations also can mitigate risks by adding cybersecurity to the C-suite agenda. As it stands, 68 per cent of respondents say their organisation’s board of directors will request an attack surface management plan for cybersecurity this year.
“Our research shows that 70 per cent of companies report a secure cloud management strategy is key to avoiding cybersecurity attacks. And 67 per cent of respondents realise that continuous asset monitoring is the cornerstone of that strategy,” says Laurel Ruma, Editorial Director, MIT Technology Review Insights, US.
The research is based on a multi-industry poll of more than 728 technology decision-makers across more than a dozen global industries, including information technology, telecommunications, manufacturing, pharmaceuticals, health care, and retail. It includes in-depth interviews from public- and private-sector organisations in Asia-Pacific (22 per cent), Europe (38 per cent), North America (24 per cent), and the Middle East and Africa (13 per cent). Three resulting reports have been published: “IT Security Starts with Knowing Your Assets: Asia-Pacific,” “A Game-changer in Security Operations,” and “IT Security Starts with Knowing Your Assets: Europe, the Middle East and Africa.”
As companies continue to accelerate their digital transformation strategies, more and more of their operations are being moved to cloud environments. Cloud-based assets comprise most cybersecurity exposures. According to Palo Alto Networks research, 79 per cent of observed issues come from the cloud.
“This data makes all too clear the reality of unknown or unmanaged assets: they are a major security risk, and the only way to protect yourself is to have a complete and up-to-date inventory of all internet-facing assets,” says Tim Junio, Senior Vice President, Products, Cortex, Palo Alto Networks.
Companies urgently need to formulate strategies to mitigate cyber-related vulnerabilities.
- Gain control over “shadow IT”: “Shadow IT,” which is rogue purchases of cloud services and installments of IoT-type connected devices, opens the doors for bad actors. Smart locks and other types of mobile access applications for employees can allow hackers to gain access to corporate networks.
- Monitor inventory: Forty-six per cent of respondents conduct inventories to discover unknown or unprioritized digital assets. Still, 31 per cent report taking such action just once per month or less frequently.
- Develop talent: Competitive salaries, stimulating projects, and opportunities for upskilling can help organizations attract and retain top talent. Even employees without extensive cybersecurity skills can mitigate security risks by increasing their understanding of the threat landscape.
- Consult the experts: Outsourcing cybersecurity allows organiSations to tap into a reservoir of skills and experience they wouldn’t otherwise have. Only 29 per cent of Asia-Pacific organisations turn to outside experts.