TRENDING
Derek Rast , Area Vice President Australia and New Zealand at Fastly risk to their organizations . There is also concern among leaders of all business sizes over credential stuffing , which attackers may use to try to compromise cloud accounts and individual As-a-Service logins .
The research also shows that :
• IT leaders expect to increase focus on the security of web applications in the next two years , but more likely in 2023 . Digital has dominated IT strategies over the past two years , but operating securely in a majority or fully web – or cloud-based environment means living with elevated risk tolerances and discomfort for security teams .
• Application security often comes off second in the competition for attention and funding . Over half ( 53 %) of IT leaders say they ’ re prioritizing ‘ other Digital Transformation projects ’ above application security in 2022 , while 39 % say ‘ other business initiatives ’ – outside of IT – are taking priority , to the detriment of cybersecurity .
• More than 40 % of leaders identify cloud misconfiguration as being still among their top five cybersecurity challenges . Despite the attention and focus this issue has received in the past couple of years , and the rise of low-code / no-code platforms and configurations , cloud environments remain complex , and errors or misunderstandings mean even experienced engineers can encounter cost overruns and / or unintended data exposure risks . This is higher for enterprises ( 41 %) than for large ( 22 %) and medium-sized ( 26 %) organizations .
• The key challenge for managing application security initiatives is complexity . 55 % of leaders say too many third parties are involved in end-to-end security of their applications , pointing to the new reality of operating in a cloud , web and API-driven world .
That is because a typical response by decision-makers to the increasing complexity of their technology environments is to deploy additional new security solutions . But that approach means nearly half of Australian companies have more than 50 cybersecurity tools , and are battling alert fatigue and high false positive rates as a result .
Organizations need a modern cybersecurity posture that enables them to anticipate threats before they happen , and respond instantly when attacks occur . They need security controls that are capable of automatically sensing , detecting , reacting , and
24 INTELLIGENTCIO APAC www . intelligentcio . com