Some of the biggest security threats that plagued CIOs in recent times – particularly in regard to “citizen tech” after the pandemic hit – have now become insignificant. Concerns surrounding shadow IT and BYOD (bring-your-own-device) have come to a simmer with classic internet threats such as employees not taking appropriate measures, malicious activities by insiders and external forces, and unpatched devices making systems and networks vulnerable.
As businesses around the world strive to gain back their market share in a post-pandemic economy, customer-centricity has taken centre stage. The intense focus on customer-centric services is only increasing the pressure on CIOs to deliver a robust, yet non-intrusive security environment.
A study by TechValidate confirms that customer trust is a top business concern for information security pushing revenue loss as a result of a security breach to the bottom of the list of concerns. This just cements the direct link between customer trust and sales.
One of the most challenging scenarios for CIOs today is navigating information security across traditional IT and new application development. Technology containers (application or service packages that allow seamless movement between varying run-time environments) were a top choice for CIOs in dealing with this hybrid environment.
The ultimate concern for most CIOs is well beyond traditional IT and more focused on transformative and innovative solutions that will win market share and grow their businesses. Against this backdrop, another study by KPMG reveals that only 8% of IT executives fully understand the security models related to cloud sharing. The study shockingly reveals that most IT and security professionals have deployed a patchwork of different cybersecurity products to try and address their CIOs data security concerns, but often face an uphill battle as these systems are seldom configured correctly. CIOs are thus left restless when their teams are ill-equipped to meet the requirement.
Organizations that discovered misconfigured cloud services experienced 10 or more data loss incidents in the last year. In fact, nearly two-thirds of the organizations shared that employees with privileged cloud accounts have had those credentials compromised by a spear phishing attack. The most common types of misconfigurations include over-privileged accounts, exposed web servers and lack of multi-factor authentication for access to key services.
Challenges of striking an optimal balance between traditional IT models and cloud and navigating security across both remains about people skills and change management, something CSG Technologies has mastered through efficient resources both in skills and processes.