Cyber Attack Fears are Delaying Business Innovation

By : Krishna Anindyo | Friday, February 21 2020 - 09:09 IWST

Cyber Attack (Images by IDN Times Jabar)
Cyber Attack (Images by IDN Times Jabar)

INDUSTRY.co.id -  Survey conducted by bug bounty and pentesting platform, HackerOne, has revealed that IT projects are being stifled due to security concerns. More than 80% of UK CISOs and CTOs who were interviewed revealed software IT projects have been hindered due to concerns over inevitable security issues. 90% also agreed that software vulnerabilities were a significant risk to their organisation.

"Organisations need to find a balance between driving innovation and keeping data safe. It is not surprising that fear around cyber security is hindering this, but by moving beyond traditional cyber security strategies, businesses can start to feel empowered,” said Laurie Mercer, Security Engineer at HackerOne.

“When I started writing code, new releases of software would take 6 months to develop and test. Today new software is released every hour. This new pace of innovation poses a problem for security teams but, by implementing a strategy that supports continuous security, businesses can ensure they are on alert for any vulnerabilities that software might have. The key is to ensure security is constantly evolving.”

Manpower and budgets are also a key concern for security professionals, with 63% believing security team resources are not able to keep up with the pace of development. Lack of budget and other resources including skill sets were also cited as key barriers to creating a well-rounded cyber security strategy, by over a third of respondents.

However, Despite the significant number of concerns around vulnerabilities and limited resources, the survey highlighted that 62% would rather accept the risk of software vulnerabilities than invite unknown hackers to find them, and 63% say they are only comfortable accepting bug submissions from vetted hackers.

A HackerOne customer and CISO of an international health and beauty retailer said,

“I understand first-hand the nature of remaining cautious, but, as we all know, traditional cyber security methods alone are not sufficient. CISOs find themselves in a tricky position, needing to embrace innovation, but while ultimately remaining responsible for cyber security. The security landscape is ever evolving and therefore we need to approach defensive strategies in the same way. By working with ethical hackers, it gives organisations the freedom to work on new projects, spin up new applications and try different ways of working, while at the same time there is peace of mind that continuous and on-going testing is taking place. With ethical hacking, these vulnerabilities can be fixed immediately.”

The research was conducted by Opinion Matters and included 200 UK CISOs and CTOs. The findings revealed what CISOs believe the biggest risks are to businesses, which areas are hindering growth and what technology respondents are likely to implement in order to overcome these challenges.

News Comment

Today's Industry

Rena Chua, Bug Bounty Advisor at HackerOne (Photo by Linkedin)

Kamis, 06 Agustus 2020 - 18:15 WIB

Securing More with Less — How to Maximise Security Coverage while Reducing Costs Usings Hacker-Powered Security

Remember those days, pre-pandemic, when you thought your security scope was complex? But now, with employees working from home, new video and collaboration apps being rolled into daily workflows,…

Trisha Paine, Head of Cloud Marketing Programs, at Check Point Software Technologies

Kamis, 06 Agustus 2020 - 17:30 WIB

Striving to Achieve High Fidelity Cloud Security

Several attributes make posture management a particularly challenging component of maintaining cloud security. For starters, you cannot secure or scale a rapidly growing quantity and variety…

Luke Tucker, Senior Director of Community at HackerOne (Photo by Linkedin)

Rabu, 05 Agustus 2020 - 22:00 WIB

Security Engineers by Day, Hackers by Night – An Interview with Two of Singapore’s Top Ethical Hackers

Over the years, the perception of the term “hacker” has changed. Once seen as only criminals, there are now over 800,000 registered security professionals on HackerOne, the world’s trusted…

Patrick Carey, Director of Product Marketing, Synopsys (Photo by Linkedin)

Rabu, 05 Agustus 2020 - 21:45 WIB

Developers are Not Security Experts, but They can be with The Right Tools

Software has revolutionised the way in which we work, live and play. This is particularly true in the realm of software security, as development teams are releasing code faster than ever before.

Darrell Adams, Head of Southeast Asia & Oceania, Universal Robots (Photo by LinkedIn)

Rabu, 05 Agustus 2020 - 21:25 WIB

5 Reasons Why You Need Collaborative Automation For Today's World

The benefits of collaborative automation are undisputed – more profitability, productivity, flexibility, higher quality and even more employee satisfaction.