ISACA recently put out its 2015 IT Risk/Reward Barometer report, which highlights the major challenges organizations face in combating today’s Internet of Things (IoT) security issues. Here are ten stats that caught our attention from the global study of 7,016 security professionals located across 140 countries:
- In the workplace, IoT devices can be a great boon for businesses. 77 percent of IT professionals say that the IoT has benefited their company, bringing things like greater accessibility to information (44 percent), greater efficiency (35 percent), improved services (34 percent) and increase productivity (25 percent). However…
- 73 percent of IT professionals consider it a medium to high likelihood that a company will be hacked through an internet-connected device (whether it be a laptop or a Fitbit)
- 1 in 2 believe the IT department is not aware of all the organization’s connected devices
- 47 percent expect a cyber attack on their organization within a year’s time.
- 1 in 3 believe their organization is unprepared for a sophisticated cyber attack
- 72 percent don’t believe that manufacturers are implementing sufficient security measures in IoT devices
- The #1 IoT security concern for enterprises is data leakage
- 45 percent say the best way to keep IoT data secure is simply to not store any sensitive or classified data on devices at all
- 63 percent believe that the IoT will result in decreased employee privacy
- And 63 percent are not confident that they can control who has access to their information collected by IoT devices at home
As ISACA CEO Matt Loeb explained in a Wall Street Journal article, “Workplaces are becoming more difficult to secure as connected devices like fitness bands and smartwatches spread in popularity and make their way to the office on the wrists and in the pockets of employees. If these seemingly harmless devices connect to your company’s networks or servers and share and store information, they create more entry points where such information can be compromised. Cybercriminals realize this. Many of your employees probably don’t.”
No matter what policies you’ve put in place to regulate BYOD and minimize the risk of IoT threats, you face a losing proposition. Wireless and wired devices will continue to proliferate inside and around your organization, and if you haven’t made device detection and fingerprinting a top priority, this new study should serve as a wake-up call.
Learn how Pwnie Express can arm your security team to win the BYOD battle and see all the things you’ve been missing by visiting here.