Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Global Cybersecurity Confidence Falls to 70 Percent with a “C-” Overall Grade for 2017

December 5, 2016 · Columbia, MD

Second annual international survey of information security professionals finds global confidence in ability to accurately assess cyber risk dropped 12 percentage points over 2016

Tenable Network Security®, Inc., a global leader transforming security technology for the business needs of tomorrow, released findings today from the 2017 Global Cybersecurity Assurance Report Card, in which the world’s information security practitioners gave global cybersecurity readiness a “C-” average with an overall score of 70 percent.

 

 

The 2017 Global Cybersecurity Assurance Report Card solicited insights from 700 security practitioners in nine countries and across seven industry verticals to calculate a global index score reflecting overall confidence that the world’s cyber defenses are meeting expectations.

 

According to this year’s data, global cybersecurity confidence fell six points over 2016 to earn an overall score of 70 percent — a “C-” on the report card.

 

The overall decline in confidence is the result of a 12-point drop in the 2017 Risk Assessment Index, which measured the ability of respondents to assess cyber risk across 11 key components of the enterprise information technology (IT) landscape.

 

For the second straight year, practitioners cited the “overwhelming cyber threat environment” as the single biggest challenge facing IT security professionals today, followed closely by “low security awareness among employees” and “lack of network visibility (BYOD, shadow IT).”

 

“Today’s network is constantly changing — mobile devices, cloud, IoT, web apps, containers, virtual machines — and the data indicate that a lot of organizations lack the visibility they need to feel confident in their security posture,” said Cris Thomas, strategist, Tenable Network Security. “It’s pretty clear that newer technologies like DevOps and containers contributed to driving the overall score down, but the real story isn’t just one or two things that need improvement, it’s that everything needs improvement.”

 

2017 Key Global Findings

  • Cloud Darkening - Cloud software as a service (SaaS) and infrastructure as a service (IaaS) were two of the lowest scoring Risk Assessment areas in the 2016 report. SaaS and IaaS were combined with platform as a service (PaaS) for the 2017 survey and the new “cloud environments” component scored 60 percent (D-), a seven point drop compared to last year’s average for IaaS and SaaS.
  • A Mobile Morass - Identified alongside IaaS and SaaS in last year’s report as one of the biggest enterprise security weaknesses, Risk Assessment for mobile devices dropped eight points from 65 percent (D) to 57 percent (F).
  • New Challenges Emerge - Two new IT components were introduced for 2017 — containerization platforms and DevOps environments.

    DevOps is transforming the way software teams collaborate through increased consistency and automation, but it also introduces new security concerns. In fact, respondents reported just 57 percent confidence in the ability to assess security during the DevOps process.

    At the same time, adoption of containerization technologies like Docker is exploding as organizations look to accelerate innovation cycles and reduce time-to-market. Unfortunately, only 52 percent of respondents felt that their organization had a handle on how best to assess risks within container environments.

2017 Overall Cybersecurity Assurance Report Cards by Country

  1. India: B (84 percent)
  2. United States: C+ (78 percent)
  3. Canada: C (75 percent)
  4. France: C (74 percent)
  5. Australia: C- (71 percent)
  6. United Kingdom: D (66 percent)
  7. Singapore: D (64 percent)
  8. Germany: D- (62 percent)
  9. Japan: F (48 percent)
 

2017 Overall Cybersecurity Assurance Report Cards by Industry

  1. Retail: C (76 percent)
  2. Financial Services: C- (72 percent)
  3. Manufacturing: C- (72 percent)
  4. Telecom: C- (70 percent)
  5. Health Care: D (65 percent)
  6. Education: D (64 percent)
  7. Government: D (63 percent)
 

Original research for the 2017 Global Cybersecurity Assurance Report Card was conducted by CyberEdge Group, a premier research and marketing firm serving the security industry’s top vendors. To view or download the full report, visit tenable.com/2017-global-cybersecurity-assurance-report-card.

 

 

About the 2017 Global Cybersecurity Assurance Report Card

Tenable surveyed 700 IT security professionals employed by organizations with 1,000+ employees in September 2016. A 12-question web-based survey asked respondents to provide a rating on a five-point scale. By adding together the two most-favorable responses (e.g., strongly agree + somewhat agree) for each question, and then averaging together associated responses, two summary indices were derived. The Risk Assessment Index measured an organization’s ability to assess cybersecurity risks across 10 key components of enterprise IT infrastructure. The Security Assurance Index measured an organization’s ability to mitigate threats by investing in security infrastructure fueled by executive and board level commitment. The index scores were combined to produce the overall report card score for each country and industry. For more information visit tenable.com/2017-global-cybersecurity-assurance-report-card.

Stay up to date!

Subscribe to our email alerts for new press releases.

Subscribe for press release updates

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy.

Your Tenable Vulnerability Management trial also includes Tenable Lumin and Tenable Web App Scanning.

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

100 assets

Choose Your Subscription Option:

Buy Now

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy.

Your Tenable Vulnerability Management trial also includes Tenable Lumin and Tenable Web App Scanning.

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

100 assets

Choose Your Subscription Option:

Buy Now

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy.

Your Tenable Vulnerability Management trial also includes Tenable Lumin and Tenable Web App Scanning.

Tenable Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

100 assets

Choose Your Subscription Option:

Buy Now

Try Tenable Web App Scanning

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable One Exposure Management platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

Your Tenable Web App Scanning trial also includes Tenable Vulnerability Management and Tenable Lumin.

Buy Tenable Web App Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578

Buy Now

Try Tenable Lumin

Visualize and explore your exposure management, track risk reduction over time and benchmark against your peers with Tenable Lumin.

Your Tenable Lumin trial also includes Tenable Vulnerability Management and Tenable Web App Scanning.

Buy Tenable Lumin

Contact a Sales Representative to see how Tenable Lumin can help you gain insight across your entire organization and manage cyber risk.

Try Tenable Nessus Professional Free

FREE FOR 7 DAYS

Tenable Nessus is the most comprehensive vulnerability scanner on the market today.

NEW - Tenable Nessus Expert
Now Available

Nessus Expert adds even more features, including external attack surface scanning, and the ability to add domains and scan cloud infrastructure. Click here to Try Nessus Expert.

Fill out the form below to continue with a Nessus Pro Trial.

Buy Tenable Nessus Professional

Tenable Nessus is the most comprehensive vulnerability scanner on the market today. Tenable Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save. Add Advanced Support for access to phone, community and chat support 24 hours a day, 365 days a year.

Select Your License

Buy a multi-year license and save.

Add Support and Training

Try Tenable Nessus Expert Free

FREE FOR 7 DAYS

Built for the modern attack surface, Nessus Expert enables you to see more and protect your organization from vulnerabilities from IT to the cloud.

Already have Tenable Nessus Professional?
Upgrade to Nessus Expert free for 7 days.

Buy Tenable Nessus Expert

Built for the modern attack surface, Nessus Expert enables you to see more and protect your organization from vulnerabilities from IT to the cloud.

Select Your License

Buy a multi-year license and save more.

Add Support and Training