Old tactics too often used to fight top data security threats

Register now

Organizations recognize information security as a growing imperative, but too many remain on the defensive and use dated tactics and training to protect their data.

That is the conclusion of the new study “The Evolution of Security Skills” from CompTIA, the leading technology association. According to the study, one of the challenges for many organizations is that they put their focus on the cyber threats they understand the best. Malware and viruses, two of the oldest forms of cyberattacks, generally get the most attention.

Of the 350 organizations surveyed, 29 percent said they are highly proactive in their security posture, emphasizing detection and response. Another 34 percent said they balance a strong cyber defense with some proactive measures.

“While we certainly need to remain vigilant about these threats, many other forms of attack have emerge that can carry disastrous consequences,” says Seth Robinson, senior director, technology analysis, at CompTIA.

Robinson calls on organizations to adopt proactive measures to protect their data. These include identifying weak links before they are exploited, broadening the skills of their technology professionals, and increasing security training top to bottom throughout the organization.

“Building an impenetrable defense is no longer practical and the mentality of preventing all breaches is outdated,” Robinson says. “But a new, proactive approach combining technologies, precedures and education can help find problem areas before attackers discover them.”

“While many companies have moved in the direction of cloud computing, mobile devices and other new technologies, it’s clear that a large number have failed to fully consider the corresponding security implications,” Robinson continued. “Gaining an appreciation and understanding of the many threats in play today is the first step in threat management.”

For reprint and licensing requests for this article, click here.