Cyber Attack Fears are Delaying Business Innovation

By : Krishna Anindyo | Friday, February 21 2020 - 09:09 IWST

Cyber Attack (Images by IDN Times Jabar)
Cyber Attack (Images by IDN Times Jabar)

INDUSTRY.co.id -  Survey conducted by bug bounty and pentesting platform, HackerOne, has revealed that IT projects are being stifled due to security concerns. More than 80% of UK CISOs and CTOs who were interviewed revealed software IT projects have been hindered due to concerns over inevitable security issues. 90% also agreed that software vulnerabilities were a significant risk to their organisation.

"Organisations need to find a balance between driving innovation and keeping data safe. It is not surprising that fear around cyber security is hindering this, but by moving beyond traditional cyber security strategies, businesses can start to feel empowered,” said Laurie Mercer, Security Engineer at HackerOne.

“When I started writing code, new releases of software would take 6 months to develop and test. Today new software is released every hour. This new pace of innovation poses a problem for security teams but, by implementing a strategy that supports continuous security, businesses can ensure they are on alert for any vulnerabilities that software might have. The key is to ensure security is constantly evolving.”

Manpower and budgets are also a key concern for security professionals, with 63% believing security team resources are not able to keep up with the pace of development. Lack of budget and other resources including skill sets were also cited as key barriers to creating a well-rounded cyber security strategy, by over a third of respondents.

However, Despite the significant number of concerns around vulnerabilities and limited resources, the survey highlighted that 62% would rather accept the risk of software vulnerabilities than invite unknown hackers to find them, and 63% say they are only comfortable accepting bug submissions from vetted hackers.

A HackerOne customer and CISO of an international health and beauty retailer said,

“I understand first-hand the nature of remaining cautious, but, as we all know, traditional cyber security methods alone are not sufficient. CISOs find themselves in a tricky position, needing to embrace innovation, but while ultimately remaining responsible for cyber security. The security landscape is ever evolving and therefore we need to approach defensive strategies in the same way. By working with ethical hackers, it gives organisations the freedom to work on new projects, spin up new applications and try different ways of working, while at the same time there is peace of mind that continuous and on-going testing is taking place. With ethical hacking, these vulnerabilities can be fixed immediately.”

The research was conducted by Opinion Matters and included 200 UK CISOs and CTOs. The findings revealed what CISOs believe the biggest risks are to businesses, which areas are hindering growth and what technology respondents are likely to implement in order to overcome these challenges.

News Comment

Today's Industry

Ian Hall - Asia-Pacific Client Services Manager, at Synopsys Software Integrity Group

Senin, 26 Oktober 2020 - 11:00 WIB

4 Steps for CISOs to Improve Their Organisation’s Application Security Program

Synopsys recently published its annual BSIMM report, created to help organisations plan, execute, measure, and improve their software security initiatives

Friedhelm Best - Vice President Asia Pacific, HIMA (Photo by HIMA)

Jumat, 23 Oktober 2020 - 14:30 WIB

Farm & Food 4.0: How Technology Is Transforming an Industry

Digitization has affected different industries, and especially now, the food and farming industries as well.

Rena Chua, Bug Bounty Advisor at HackerOne (Photo by Linkedin)

Jumat, 23 Oktober 2020 - 11:35 WIB

3 Key Problems Security Professionals Have With Traditional Penetration Testing

Based on customer interviews, the study identifies 3 key problems with traditional pentesting solutions and evaluates the benefits of time-bound testing using ethical hackers.

The Pacific Asia Travel Association (PATA)

Jumat, 23 Oktober 2020 - 11:20 WIB

PATA Embarks On Governance Reorganisation

The Pacific Asia Travel Association (PATA) has taken the bold move to make significant changes to the design of its organisational governance at the recent Board Meeting and Annual General Meeting…

Yaffa Finkelstein - Product Marketing Manager, Check Point Software Technologies (Photo by Linkedin)

Kamis, 22 Oktober 2020 - 10:35 WIB

Secure Your Containers Like Your Apps Depend On It

Today we’ll share some of the container security concerns which you might not have considered until now, and we’ll explain how to mitigate those risks, without imposing on your agile DevOps…