思(sī)科發(fà)布(bù)《2021年(nián)安(ān)全(quán)成(chéng)果(guǒ)研究》報告
“積极(jí)更(gèng)新(xīn)技術(shù)”的(de)企業更(gèng)有(yǒu)可(kě)能(néng)獲得成(chéng)功
January 25, 2021, Beijing-Cisco recently released the "2021 Security Achievement Research" report. In the current “remote-first” world, 36% of companies in the Asia-Pacific region indicated in their survey that they have successfully responded to cybersecurity challenges through software and cloud-first strategies, and those companies that actively update technology are more likely to succeed.
Cisco's 2021 Security Achievement Study is a double-blind survey based on independent analysis covering the world. Cisco conducted a completely anonymous survey of more than 4,800 professionals in the IT, security, and privacy fields from all over the world. More than 2,000 representatives are from companies headquartered in 13 countries and regions in Asia Pacific (APJC). The findings of the survey provide practical advice for professionals in the field of cyber security, helping companies to formulate the focus of this year's security plan and help them succeed.
Research shows that "actively updating technology" is the security practice that can best help companies succeed through security programs. Those Asia-Pacific companies that stated that they have implemented an "active technology update strategy" have seen an average increase in the success rate of their security plans by 15%. In the Asia-Pacific market, the proportion of Chinese companies has increased (31%), followed by Thailand (30%), Australia (23%) and Japan (20%).
The study also conducted a survey and analysis on the success rate of various security achievements of the corporate cybersecurity program. Overall, companies in the Asia-Pacific region have the lowest success rate in "getting support from colleagues", with only one-third (33% in Asia-Pacific). , China 39%). In comparison, Chinese companies have performed well in "creating a safety culture", with a success rate of 49% (38% in Asia Pacific). The success rates of other security achievements are: "Minimize unplanned work" (34% in Asia-Pacific, 42% in China), "Retain security talents" (36% in Asia-Pacific, 40% in China), and "highest risk management" (Asia-Pacific and China). China is 37%), "Avoid major incidents" (Asia Pacific 38%, China 43%).
Not all companies have sufficient budgets and expertise to support them in achieving a successful safety plan in order to maintain the "safety bottom line." Adopting cloud security and SaaS security solutions strategy can help companies make up for this deficiency. Other important findings of the report include:
l In the list of "the impact of various security practices on the overall success of the plan", "full integration of various technologies" ranked second. It has a positive impact on almost every result of the evaluation and can increase the overall probability of success by an average of 7 %. Interestingly, the full integration of technology is also very helpful for companies to recruit and retain talent, because the security team wants to use the best technology to avoid job burnout.
l "Collaborative work between IT and all doors" has the least impact on the success rate of the security plan. This conclusion seems surprising, but it also shows that in the eyes of many chief information security officers, security has become an important part of their IT architecture, which means that cooperation has been established internally and no additional management or calculations are required. . For enterprises, large-scale IT projects such as zero trust or the implementation of SASE/SD-WAN should be led by security. In most cases, these tasks are cross-cutting, so IT and security collaboration is essential.
Kerry Singleton, General Manager of Cisco’s Asia Pacific Cyber Security Business, said: “Cyber security professionals are under increasing pressure. They need to make quick and wise decisions, support and protect the rapidly evolving “work anytime, anywhere” model, and be ready at any time. Responding to constantly emerging system vulnerabilities and cyber threats. It is difficult for most companies to maintain high investment in security, such as hiring more professionals and adopting additional technologies. This research helps guide and help companies consider key security decisions to Achieve the best results."
This report focuses on the wide-ranging impact of security programs within the company-from operations, management, and talent retention to corporate culture. In today's remote-first world, companies must have a strong sense of security in order to protect and serve employees and customers, and achieve further development.
For more information, please visit: the original report and the simplified Chinese version of the Asia-Pacific report.
This article is reprinted to Cisco's official website, the original link:
Cisco releases 《2021年(nián)安(ān)全(quán)成(chéng)果(guǒ)研究》report
2021年(nián)1月(yuè)25日(rì),北(běi)京(jīng)——思(sī)科近(jìn)期(qī)發(fà)布(bù)了(le)《2021年(nián)安(ān)全(quán)成(chéng)果(guǒ)研究》報告。在(zài)當前(qián)这(zhè)个(gè)“遠(yuǎn)程優先(xiān)”的(de)世界中,亚太地(dì)區(qū)36%的(de)企業在(zài)調研中表(biǎo)示,他(tā)们(men)通(tòng)过(guò)软(ruǎn)件(jiàn)和(hé)雲(yún)優先(xiān)策略成(chéng)功应对(duì)了(le)网(wǎng)絡安(ān)全(quán)挑戰,而那(nà)些積极(jí)更(gèng)新(xīn)技術(shù)的(de)企業更(gèng)有(yǒu)可(kě)能(néng)獲得成(chéng)功。
思(sī)科《2021年(nián)安(ān)全(quán)成(chéng)果(guǒ)研究》是(shì)一次(cì)覆蓋全(quán)球的(de)基于(yú)獨立分(fēn)析的(de)双(shuāng)盲調查,思(sī)科对(duì)来(lái)自(zì)全(quán)球各(gè)地(dì)4800 餘名(míng)從事(shì) IT、安(ān)全(quán)和(hé)隐私领域的(de)專業人(rén)員進(jìn)行了(le)完全(quán)匿名(míng)的(de)調查。其(qí)中两(liǎng)千(qiān)多(duō)名(míng)代表(biǎo)来(lái)自(zì)總(zǒng)部(bù)設在(zài)亚太(APJC)13个(gè)国家(jiā)和(hé)地(dì)區(qū)的(de)公司。調查結果(guǒ)为(wèi)网(wǎng)絡安(ān)全(quán)领域的(de)專業人(rén)士提(tí)供了(le)切(qiè)實(shí)可(kě)行的(de)建議,幫助企業制定(dìng)今年(nián)安(ān)全(quán)計(jì)劃(huà)的(de)重(zhòng)點(diǎn),助其(qí)獲得成(chéng)功。
研究顯示,“積极(jí)更(gèng)新(xīn)技術(shù)”是(shì)能(néng)幫助企業通(tòng)过(guò)安(ān)全(quán)計(jì)劃(huà)獲得成(chéng)功的(de)安(ān)全(quán)實(shí)踐。那(nà)些表(biǎo)示實(shí)施了(le)“積极(jí)更(gèng)新(xīn)技術(shù)戰略”的(de)亚太企業,其(qí)安(ān)全(quán)計(jì)劃(huà)的(de)成(chéng)功率平均提(tí)升(shēng)了(le)15%。在(zài)亚太區(qū)市(shì)场(chǎng)中,中国企業这(zhè)一比例提(tí)升(shēng)顯著(31%),其(qí)次(cì)是(shì)泰国(30%)、澳大(dà)利亚(23%)和(hé)日(rì)本(20%)。
该研究還(huán)就(jiù)企業网(wǎng)絡安(ān)全(quán)計(jì)劃(huà)的(de)各(gè)項安(ān)全(quán)成(chéng)果(guǒ)成(chéng)功率做了(le)調研分(fēn)析,總(zǒng)體(tǐ)而言,亚太地(dì)區(qū)的(de)企業在(zài)“獲得同(tóng)事(shì)支持(chí)”方(fāng)面(miàn)的(de)成(chéng)功率低(dī),僅有(yǒu)三分(fēn)之(zhī)一(亚太33%,中国39%)。相較而言,中国企業在(zài)“打(dǎ)造安(ān)全(quán)文(wén)化(huà)”方(fāng)面(miàn)表(biǎo)现不(bù)俗,成(chéng)功率为(wèi)49%(亚太38%)。其(qí)他(tā)安(ān)全(quán)成(chéng)果(guǒ)成(chéng)功率分(fēn)别为(wèi):“大(dà)限度(dù)減少(shǎo)計(jì)劃(huà)外(wài)工作”(亚太34%,中国42%)、“留住安(ān)全(quán)人(rén)才”(亚太36%,中国40%)、“管(guǎn)控高(gāo)風(fēng)險”(亚太和(hé)中国均为(wèi)37%)、“避免重(zhòng)大(dà)事(shì)件(jiàn)”(亚太38%,中国43%)。
不(bù)是(shì)所(suǒ)有(yǒu)的(de)企業都擁有(yǒu)充足的(de)預算和(hé)專業知識支持(chí)他(tā)们(men)實(shí)现成(chéng)功的(de)安(ān)全(quán)計(jì)劃(huà),以(yǐ)守住“安(ān)全(quán)底線(xiàn)”。采取(qǔ)雲(yún)安(ān)全(quán)和(hé)SaaS安(ān)全(quán)解(jiě)決方(fāng)案(àn)的(de)策略可(kě)以(yǐ)幫助企業彌補这(zhè)方(fāng)面(miàn)的(de)不(bù)足。 该報告的(de)其(qí)他(tā)重(zhòng)要發(fà)现包(bāo)括:
l 在(zài)“各(gè)種(zhǒng)安(ān)全(quán)實(shí)踐对(duì)計(jì)劃(huà)取(qǔ)得整體(tǐ)成(chéng)功的(de)影響”列表(biǎo)中,“各(gè)項技術(shù)充分(fēn)集成(chéng)”排名(míng)第(dì)二(èr),它(tā)几乎对(duì)評估的(de)每一个(gè)結果(guǒ)都有(yǒu)積极(jí)影響,能(néng)夠将總(zǒng)體(tǐ)成(chéng)功概率平均提(tí)高(gāo)7%。有(yǒu)趣的(de)是(shì),技術(shù)的(de)充分(fēn)集成(chéng)還(huán)对(duì)企業招攬人(rén)才及(jí)留住人(rén)才大(dà)有(yǒu)助益,因(yīn)为(wèi)安(ān)全(quán)团(tuán)隊希望使用(yòng)好(hǎo)的(de)技術(shù),以(yǐ)避免工作倦怠。
l “IT與(yǔ)全(quán)部(bù)門(mén)的(de)協同(tóng)工作”对(duì)安(ān)全(quán)計(jì)劃(huà)成(chéng)功率的(de)影響小。这(zhè)一結論似乎令人(rén)驚訝,但也(yě)恰恰因(yīn)此(cǐ)说(shuō)明(míng),在(zài)許多(duō)首席(xí)信(xìn)息安(ān)全(quán)官看(kàn)来(lái),安(ān)全(quán)已經(jīng)成(chéng)为(wèi)其(qí)IT架構的(de)重(zhòng)要部(bù)分(fēn),这(zhè)意(yì)味着合作在(zài)內(nèi)部(bù)已經(jīng)建立,不(bù)需要進(jìn)行额外(wài)的(de)管(guǎn)理(lǐ)或(huò)計(jì)算。对(duì)于(yú)企業来(lái)说(shuō),諸如(rú)零(líng)信(xìn)任或(huò)實(shí)施SASE/SD-WAN的(de)大(dà)型IT項目应该由(yóu)安(ān)全(quán)为(wèi)主(zhǔ)導。在(zài)大(dà)多(duō)數情(qíng)況下,这(zhè)些工作是(shì)跨领域的(de),所(suǒ)以(yǐ)IT和(hé)安(ān)全(quán)協作至(zhì)關(guān)重(zhòng)要。
思(sī)科亚太地(dì)區(qū)网(wǎng)絡安(ān)全(quán)業務(wù)總(zǒng)經(jīng)理(lǐ)Kerry Singleton表(biǎo)示:“网(wǎng)絡安(ān)全(quán)的(de)專業人(rén)士面(miàn)臨着越来(lái)越大(dà)的(de)壓力,他(tā)们(men)需要快(kuài)速、明(míng)智地(dì)決策,支持(chí)並(bìng)保護快(kuài)速發(fà)展(zhǎn)的(de)‘随时(shí)随地(dì)工作’模式,随时(shí)準備应对(duì)不(bù)断出(chū)现的(de)系(xì)統漏洞(dòng)和(hé)网(wǎng)絡威脅。大(dà)多(duō)數公司難以(yǐ)保持(chí)对(duì)安(ān)全(quán)的(de)高(gāo)投入(rù),比如(rú)雇傭更(gèng)多(duō)專業人(rén)員以(yǐ)及(jí)采用(yòng)额外(wài)的(de)技術(shù)。这(zhè)項研究有(yǒu)助于(yú)指引和(hé)幫助企業考量(liàng)關(guān)鍵的(de)安(ān)全(quán)決策,以(yǐ)實(shí)现更(gèng)佳成(chéng)果(guǒ)。”
这(zhè)份報告聚焦安(ān)全(quán)計(jì)劃(huà)在(zài)企業內(nèi)部(bù)的(de)廣泛影響——從运營、管(guǎn)理(lǐ)、人(rén)才保留到企業文(wén)化(huà)。在(zài)當今这(zhè)个(gè)遠(yuǎn)程優先(xiān)的(de)世界,企業必須具備強(qiáng)大(dà)的(de)安(ān)全(quán)意(yì)識,才能(néng)保護、服(fú)務(wù)員工和(hé)客戶,取(qǔ)得進(jìn)一步的(de)發(fà)展(zhǎn)。
了(le)解(jiě)更(gèng)多(duō)信(xìn)息,請訪问:報告原文(wén)及(jí)亚太區(qū)報告簡體(tǐ)中文(wén)版 。
本文(wén)轉(zhuǎn)载(zài)至(zhì)思(sī)科官网(wǎng),原文(wén)鍊(liàn)接:
思(sī)科發(fà)布(bù)《2021年(nián)安(ān)全(quán)成(chéng)果(guǒ)研究》報告
“積极(jí)更(gèng)新(xīn)技術(shù)”的(de)企業更(gèng)有(yǒu)可(kě)能(néng)獲得成(chéng)功
