Skip nav

Employees regarded as an organisation's greatest asset but also one of the biggest data security risks

Companies must change their mindset and look at data, not as a fungible commodity, but as a valuable asset. Data is more valuable than a pot of gold

What's keeping IT professionals awake at night? Data storage, data access and data sharing

Reading, Berkshire; 20 July 2017 – IT professionals believe that compliance and regulation and the unpredictable behaviour of employees will have the biggest impact on data security according to a new Concensus survey* commissioned by independent global data security specialist, HANDD Business Solutions (HANDD).

The findings are launched alongside HANDD’s new Advisory Paper – ‘Securing the Journey of Your Data’ – which tackles the issue of data protection and provides organisations with an insight into the challenges and solutions associated with securing data on its journey through the enterprise.

The survey of 304 IT professionals in the UK shows that 21 per cent of respondents say regulations, legislation and compliance will be one of the two greatest business challenges to impact data security. The General Data Protection Regulation (GDPR) is causing real concern among professionals in their bid to be compliant by the deadline, less than 12 months away. GDPR will not only raise the privacy bar for companies across the EU, but will also impose extra data protection burdens on them.

HANDD CEO and Co-Founder Ian Davin commented: “Companies must change their mindset and look at data, not as a fungible commodity, but as a valuable asset. Data is more valuable than a pot of gold, which puts companies in a challenging position as the stewards of that data. C-suite executives must understand the data protection challenges they face and implement a considered plan and methodical approach to protecting sensitive data.”

Worryingly, 41 per cent of those surveyed assign the same level of security resources and spend for all company data, regardless of its importance. Analysing and documenting the characteristics of each data item is a vital part of its journey through an organisation. A robust data classification system will see all data tagged with markers defining useful attributes, such as sensitivity level or a retention requirement and ensuring that an organisation understands completely which data requires greater levels of protection.

“Many organisations have no insight into the data that they hold and so don’t understand which data is worth heavy investment and which isn’t so the reality is that they could be spending as much on securing the lunch menu as they are on securing their customers’ data,” explains Danny Maher, CTO at HANDD.

While 43 per cent of those surveyed think that employees are an organisation’s greatest asset, more than a fifth (21 per cent) believe that the behaviour of employees and their reactions to social engineering attacks, which can trick them into sharing user credentials and sensitive data, also poses a big challenge to data security. “Employees are probably your biggest asset, yet they are also your weakest link, and so raising user awareness and improving security consciousness are hugely important for companies that want to drive a culture of security throughout their organisation,” adds Danny Maher.

Storage is also a key problem area, with more than a third (35 per cent) citing that ensuring data is stored securely, and whether it's on premise or in the cloud, as their biggest challenge and most likely to keep them awake at night. A data record’s classification will enable a company to make these decisions, automatically and definitively dictating its location and whether an encryption policy should apply.

Having stored data to comply with its security policy a company must ensure that an access management system is in place, which understands roles and responsibilities and allows users to see only the information that they need. In HANDD’s survey less than half (45 per cent) of IT professionals are confident that they have an identity access management process in place that dictates that users must have different privileges depending on their roles and responsibilities, while 15 per cent have no access management system in place at all.

HANDD’s Advisory Paper, Securing the Journey of Your Data is available to download now
.

*Concensus surveyed 304 UK IT professionals in June 2017

- ends -

About HANDD Business Solutions:

Established in 2006 and headquartered in Reading, HANDD Business Solutions (HANDD) is an independent specialist in global data security. Working with market leading vendors, HANDD delivers industry-leading solutions that analyse and protect data through every aspect of its journey. These include Data Classification, Managed File Transfer , Identity Access Management, Data Loss Prevention, Data Governance, Encryption, Incident Response, DDoS, Vulnerability and User and Entity Behaviour Analytics. HANDD has more than 500 clients spanning 25 countries across the energy, financial services, insurance, manufacturing, retail and utilities sectors. These comprise 45% of the FTSE 100, eight of the world’s largest banks as well as a host of global organisations including KPMG, National Grid, Jaguar Land Rover and London Stock Exchange. Following its carefully developed four-step strategy of analyse, protect, detect and respond, HANDD’s specialist knowledge and unrivalled expertise makes it a trusted advisor in securing a client’s data wherever it travels, from consultancy and technical design, through to implementation, training and support. For more information visit www.handd.co.uk

For further information contact:

Louise Burke
Origin Communications
louise@origincomms.com
+44 (0)7917 176095