Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.

Published byJuliet Rice Modified over 9 years ago

Similar presentations

Presentation on theme: "© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security."— Presentation transcript:

1 © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security August 2014

2 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 2 Background and Methodology Wanted to explore the main challenges on managing network security and where companies are lacking in security products/practices. 205 completed interviews were collected via an online survey Qualified respondents were located in the United States and met the following criteria: − Work full time in a MIS/IS/IT/Networking/Technology-related job function in a company with: 100+ employees At least $1 million in annual revenue − Must make decisions or provide input into decisions made for technology solutions used within the organization Respondents were questioned on corporate IT security initiatives, specific concerns regarding network security and the nature of attacks and threats as well as their source. Field dates: June 30 – July 15, 2014

3 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 3 3 Average = 5,100 employees Average = $79.5 million Total Respondents (n=205) Average = $2.6 million Number of Employees Role within Organization Demographics – IT Professionals

4 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Survey Highlights Balancing Security Posture with Corporate Policy

5 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Social media and non- productive employee web browsing are top types of abuse happening on corporate networks.

6 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. More than half of IT professionals are “very concerned” with file sharing.

7 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Survey Highlights Increasing Network Security Budget

8 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Over 3 in 5 IT professionals expect both network security costs and budgets to increase over the next 12 months.

9 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Firms that spend $500K or more annually on network security are also significantly more likely to have breach detection and compliance as a corporate initiative. Top Security Initiative: Embracing cloud or virtualization

10 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Survey Highlights Network Security Attack Landscape

11 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Nearly 3 in 4 IT professionals have experienced phishing within their organization. Those who spend more on security tend to experience more types of attacks.

12 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Customer data is cited most often as the type of data attacked, followed by financial information.

13 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. IT professionals are most concerned with external threats in regards to security. Data center and endpoint security comprise a second tier of concern. Although 2 in 5 are concerned with BYOD, it falls to the bottom of the list.

14 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. China is stated most often as a country of origin for attacks, followed by Russia and the USA.

15 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Over 3 in 4 IT professionals experience untargeted spam in their organization once a week or more.

16 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Over a third of IT professionals have recently seen more attacks/threats from user activity, while 2 in 5 state they have not seen a change. Those who spend more annually in network security have seen more attacks.

17 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Of those who have recently seen more attacks stemming from user activity, around 7 out of 10 are a malware infected host, around 6 out of 10 are malicious communication with the command and control site and over half are taking advantage of software vulnerability. Top threats relative to these new attacks are primarily within the data center, mobile, and branch networks.

18 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Nearly 3 in 5 IT professionals are concerned with Application DDoS. Brute force attacks tend to be more of a concern among companies with higher revenue or spend more on security. On the other hand, companies who spend less on security are not as concerned about DDoS.

19 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Survey Highlights Rising Network Security Concerns

20 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Manageability rises to the top as a key concern for migrating to SDN, followed by being in the early stages of planning and an attacker compromising the SDN controller.

21 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 3 in 5 IT professionals use IPS or NGFW to identify their “patient zero.”

22 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 22 HP’s Recommendations to Increase Network Security Posture Layered security is still relevant, especially in advanced threat scenarios − Organizations need perimeter firewalls all the way to application security solutions − Companies are layering IPS, NGFW, Sandboxing and SIEM products With so many application vulnerabilities annually − Companies have to consider the need for zero-day coverage − Using application controls in NGFW and remediating software app vulnerabilities is key Ensure you are spending your large (and increasing) Network Security budget on the right things − How are you addressing command and control traffic? − Are you able to block unfiltered spam or phishing attacks?

23 © Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Thank you

Download ppt "© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security."

Similar presentations

Palo Alto Networks Jay Flanyak Channel Business Manager

Palo Alto Networks Jay Flanyak Channel Business Manager
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
7 Effective Habits when using the Internet Philip O’Kane 1.

7 Effective Habits when using the Internet Philip O’Kane 1.
1 Getting Beyond Standalone Antivirus to Advanced Threat Protection Eric Schwake Sr. Product Marketing

1 Getting Beyond Standalone Antivirus to Advanced Threat Protection Eric Schwake Sr. Product Marketing
11 Zero Trust Networking PALO ALTO NETWORKS Zero Trust Networking April 2015 | ©2014, Palo Alto Networks. Confidential and Proprietary.1 Greg Kreiling.

11 Zero Trust Networking PALO ALTO NETWORKS Zero Trust Networking April 2015 | ©2014, Palo Alto Networks. Confidential and Proprietary.1 Greg Kreiling.
Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.

Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Security Services Svetlana.

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Security Services Svetlana.
©2014 Bit9. All Rights Reserved Building a Continuous Response Architecture.

©2014 Bit9. All Rights Reserved Building a Continuous Response Architecture.
© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our.

© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our.
Study conducted on behalf of Microsoft by Harris Interactive Inc. Study conducted on behalf of Microsoft by Harris Interactive, Inc. Study conducted on.

Study conducted on behalf of Microsoft by Harris Interactive Inc. Study conducted on behalf of Microsoft by Harris Interactive, Inc. Study conducted on.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Nate Olson-Daniel Director of Strategic Development & Principal Engineer The Inevitable Attack.

Nate Olson-Daniel Director of Strategic Development & Principal Engineer The Inevitable Attack.
IBM Security Network Protection (XGS)

IBM Security Network Protection (XGS)
© 2012 IBM Corporation IBM Security Systems 1 © 2014 IBM Corporation IBM Security Network Protection (XGS) Advanced Threat Protection Integration Framework.

© 2012 IBM Corporation IBM Security Systems 1 © 2014 IBM Corporation IBM Security Network Protection (XGS) Advanced Threat Protection Integration Framework.
2014 State of Unified Communications Research Findings © 2014 Property of UBM Tech; All Rights Reserved.

2014 State of Unified Communications Research Findings © 2014 Property of UBM Tech; All Rights Reserved.
Third Annual Shopping on the Job: ISACA’s Online Holiday Shopping and Workplace Internet Safety Survey Commissioned by ISACA (www.isaca.org) November 2010.

Third Annual Shopping on the Job: ISACA’s Online Holiday Shopping and Workplace Internet Safety Survey Commissioned by ISACA ( November 2010.
SiteLock Internet Security: Big Threats for Small Business.

SiteLock Internet Security: Big Threats for Small Business.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
Embracing IP Multimedia Services for Strategic Business Advantage Rick Seeto VP & GM Enterprise Networks, Asia Pacific.

Embracing IP Multimedia Services for Strategic Business Advantage Rick Seeto VP & GM Enterprise Networks, Asia Pacific.

Similar presentations

Ads by Google