思科发布《2021年安全成果研究》报告
“积极更新技术”的企业更有可能获得成功
January 25, 2021, Beijing-Cisco recently released the "2021 Security Achievement Research" report. In the current “remote-first” world, 36% of companies in the Asia-Pacific region indicated in their survey that they have successfully responded to cybersecurity challenges through software and cloud-first strategies, and those companies that actively update technology are more likely to succeed.
Cisco's 2021 Security Achievement Study is a double-blind survey based on independent analysis covering the world. Cisco conducted a completely anonymous survey of more than 4,800 professionals in the IT, security, and privacy fields from all over the world. More than 2,000 representatives are from companies headquartered in 13 countries and regions in Asia Pacific (APJC). The findings of the survey provide practical advice for professionals in the field of cyber security, helping companies to formulate the focus of this year's security plan and help them succeed.
Research shows that "actively updating technology" is the security practice that can best help companies succeed through security programs. Those Asia-Pacific companies that stated that they have implemented an "active technology update strategy" have seen an average increase in the success rate of their security plans by 15%. In the Asia-Pacific market, the proportion of Chinese companies has increased (31%), followed by Thailand (30%), Australia (23%) and Japan (20%).
The study also conducted a survey and analysis on the success rate of various security achievements of the corporate cybersecurity program. Overall, companies in the Asia-Pacific region have the lowest success rate in "getting support from colleagues", with only one-third (33% in Asia-Pacific). , China 39%). In comparison, Chinese companies have performed well in "creating a safety culture", with a success rate of 49% (38% in Asia Pacific). The success rates of other security achievements are: "Minimize unplanned work" (34% in Asia-Pacific, 42% in China), "Retain security talents" (36% in Asia-Pacific, 40% in China), and "highest risk management" (Asia-Pacific and China). China is 37%), "Avoid major incidents" (Asia Pacific 38%, China 43%).
Not all companies have sufficient budgets and expertise to support them in achieving a successful safety plan in order to maintain the "safety bottom line." Adopting cloud security and SaaS security solutions strategy can help companies make up for this deficiency. Other important findings of the report include:
l In the list of "the impact of various security practices on the overall success of the plan", "full integration of various technologies" ranked second. It has a positive impact on almost every result of the evaluation and can increase the overall probability of success by an average of 7 %. Interestingly, the full integration of technology is also very helpful for companies to recruit and retain talent, because the security team wants to use the best technology to avoid job burnout.
l "Collaborative work between IT and all doors" has the least impact on the success rate of the security plan. This conclusion seems surprising, but it also shows that in the eyes of many chief information security officers, security has become an important part of their IT architecture, which means that cooperation has been established internally and no additional management or calculations are required. . For enterprises, large-scale IT projects such as zero trust or the implementation of SASE/SD-WAN should be led by security. In most cases, these tasks are cross-cutting, so IT and security collaboration is essential.
Kerry Singleton, General Manager of Cisco’s Asia Pacific Cyber Security Business, said: “Cyber security professionals are under increasing pressure. They need to make quick and wise decisions, support and protect the rapidly evolving “work anytime, anywhere” model, and be ready at any time. Responding to constantly emerging system vulnerabilities and cyber threats. It is difficult for most companies to maintain high investment in security, such as hiring more professionals and adopting additional technologies. This research helps guide and help companies consider key security decisions to Achieve the best results."
This report focuses on the wide-ranging impact of security programs within the company-from operations, management, and talent retention to corporate culture. In today's remote-first world, companies must have a strong sense of security in order to protect and serve employees and customers, and achieve further development.
For more information, please visit: the original report and the simplified Chinese version of the Asia-Pacific report.
This article is reprinted to Cisco's official website, the original link:
Cisco releases 《2021年安全成果研究》report
2021年1月25日,北京——思科近期发布了《2021年安全成果研究》报告。在当前这个“远程优先”的世界中,亚太地区36%的企业在调研中表示,他们通过软件和云优先策略成功应对了网络安全挑战,而那些积极更新技术的企业更有可能获得成功。
思科《2021年安全成果研究》是一次覆盖全球的基于独立分析的双盲调查,思科对来自全球各地4800 余名从事 IT、安全和隐私领域的专业人员进行了完全匿名的调查。其中两千多名代表来自总部设在亚太(APJC)13个国家和地区的公司。调查结果为网络安全领域的专业人士提供了切实可行的建议,帮助企业制定今年安全计划的重点,助其获得成功。
研究显示,“积极更新技术”是能帮助企业通过安全计划获得成功的安全实践。那些表示实施了“积极更新技术战略”的亚太企业,其安全计划的成功率平均提升了15%。在亚太区市场中,中国企业这一比例提升显著(31%),其次是泰国(30%)、澳大利亚(23%)和日本(20%)。
该研究还就企业网络安全计划的各项安全成果成功率做了调研分析,总体而言,亚太地区的企业在“获得同事支持”方面的成功率低,仅有三分之一(亚太33%,中国39%)。相较而言,中国企业在“打造安全文化”方面表现不俗,成功率为49%(亚太38%)。其他安全成果成功率分别为:“大限度减少计划外工作”(亚太34%,中国42%)、“留住安全人才”(亚太36%,中国40%)、“管控高风险”(亚太和中国均为37%)、“避免重大事件”(亚太38%,中国43%)。
不是所有的企业都拥有充足的预算和专业知识支持他们实现成功的安全计划,以守住“安全底线”。采取云安全和SaaS安全解决方案的策略可以帮助企业弥补这方面的不足。 该报告的其他重要发现包括:
l 在“各种安全实践对计划取得整体成功的影响”列表中,“各项技术充分集成”排名第二,它几乎对评估的每一个结果都有积极影响,能够将总体成功概率平均提高7%。有趣的是,技术的充分集成还对企业招揽人才及留住人才大有助益,因为安全团队希望使用好的技术,以避免工作倦怠。
l “IT与全部门的协同工作”对安全计划成功率的影响小。这一结论似乎令人惊讶,但也恰恰因此说明,在许多首席信息安全官看来,安全已经成为其IT架构的重要部分,这意味着合作在内部已经建立,不需要进行额外的管理或计算。对于企业来说,诸如零信任或实施SASE/SD-WAN的大型IT项目应该由安全为主导。在大多数情况下,这些工作是跨领域的,所以IT和安全协作至关重要。
思科亚太地区网络安全业务总经理Kerry Singleton表示:“网络安全的专业人士面临着越来越大的压力,他们需要快速、明智地决策,支持并保护快速发展的‘随时随地工作’模式,随时准备应对不断出现的系统漏洞和网络威胁。大多数公司难以保持对安全的高投入,比如雇佣更多专业人员以及采用额外的技术。这项研究有助于指引和帮助企业考量关键的安全决策,以实现更佳成果。”
这份报告聚焦安全计划在企业内部的广泛影响——从运营、管理、人才保留到企业文化。在当今这个远程优先的世界,企业必须具备强大的安全意识,才能保护、服务员工和客户,取得进一步的发展。
了解更多信息,请访问:报告原文及亚太区报告简体中文版 。
本文转载至思科官网,原文链接:
思科发布《2021年安全成果研究》报告
“积极更新技术”的企业更有可能获得成功
