NEWTON, Mass. & PETACH TIKVA, Israel--(BUSINESS WIRE)-- A new global report released today by CyberArk (NASDAQ: CYBR) shows that 79% of senior security professionals state that cybersecurity has taken a back seat in the last year in favor of accelerating other digital business initiatives. The CyberArk 2022 Identity Security Threat Landscape Report identifies how the rise of human and machine identities – often running into the hundreds of thousands per organization – has driven a buildup of identity-related cybersecurity “debt,” exposing organizations to greater cybersecurity risk.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220412005372/en/
Unmanaged and unsecured digital identities are driving rise in cybersecurity debt. (Graphic: Business Wire)
A Growing Identities Problem
Every major IT or digital initiative results in increasing interactions between people, applications and processes, creating large numbers of digital identities. If these digital identities go unmanaged and unsecured, they can represent significant cybersecurity risk:
The 2022 Attack Surface
Secular trends of digital transformation, cloud migration and attacker innovation are expanding the attack surface. The report delves into the prevalence and type of cyber threats facing security teams and areas where they see elevated risk:
Getting Into Cybersecurity Debt
Security professionals agree that recent organization-wide digital initiatives have come at a price. This price is Cybersecurity Debt: while security programs have expanded, they have not kept pace with organizations’ investments focused on driving business operations and growth. This debt has arisen through not properly managing and securing access to sensitive data and assets, and a lack of Identity Security controls is driving up risk and creating consequences. The debt is compounded by the recent rise in geopolitical tensions, which have reinforced the need for heightened awareness of the physical consequences of cyber attacks, especially on critical infrastructure:
"Spending on digital transformation projects has skyrocketed in recent years to meet the demands of changed customer and workforce requirements," Udi Mokady, founder, chairman and CEO, CyberArk. “The combination of an expanding attack surface, rising numbers of identities and behind-the-curve investment in cybersecurity - what we call Cybersecurity Debt - is exposing organizations to even greater risk, which is already elevated by ransomware threats and vulnerabilities across the software supply chain. This threat environment requires a security-first approach to protecting identities, one capable of outpacing attacker innovation.”
What Can Be Done?
About the Report
The CyberArk 2022 Identity Security Threat Landscape Report represents the findings of a worldwide
survey conducted by Vanson Bourne of 1,750 IT security decision makers, highlighting their experiences over the past year in supporting their organizations’ expanding digital initiatives. Respondents were based in the US, UK, France, Germany, Japan, Italy, Spain, Brazil, Mexico, Israel, Singapore and Australia.
Additional Assets:
1 - Respondents were asked to estimate the number of applications and accounts, on average, accessed per person in their organization and not managed by federated identities. 2 - Respondents were asked about the cyber attacker tactics and techniques (as laid out in the MITRE ATT&CK® Matrix for Enterprise covering cloud-based techniques) that represented the most risk to their organization.
Copyright © 2022 CyberArk Software. All Rights Reserved. All other brand names, product names, or trademarks belong to their respective holders.
About CyberArk
CyberArk (NASDAQ: CYBR) is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit https://www.cyberark.com, read the CyberArk blogs or follow on Twitter via @CyberArk, LinkedIn or Facebook.
View source version on businesswire.com: https://www.businesswire.com/news/home/20220412005372/en/
Nick Bowman, CyberArk Email: press@cyberark.com
Highwire PR Email: cyberark@highwirepr.com
Investor Relations: Erica Smith, CyberArk Email: ir@cyberark.com
Source: CyberArk