Cookie Preference Centre

Your Privacy
Strictly Necessary Cookies
Performance Cookies
Functional Cookies
Targeting Cookies

Your Privacy

When you visit any web site, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences, your device or used to make the site work as you expect it to. The information does not usually identify you directly, but it can give you a more personalized web experience. You can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, you should know that blocking some types of cookies may impact your experience on the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site may not work then.

Cookies used

ContactCenterWorld.com

Performance Cookies

These cookies allow us to count visits and traffic sources, so we can measure and improve the performance of our site. They help us know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies, we will not know when you have visited our site.

Cookies used

Google Analytics

Functional Cookies

These cookies allow the provision of enhance functionality and personalization, such as videos and live chats. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies, then some or all of these functionalities may not function properly.

Cookies used

Twitter

Facebook

LinkedIn

Targeting Cookies

These cookies are set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant ads on other sites. They work by uniquely identifying your browser and device. If you do not allow these cookies, you will not experience our targeted advertising across different websites.

Cookies used

LinkedIn

This site uses cookies and other tracking technologies to assist with navigation and your ability to provide feedback, analyse your use of our products and services, assist with our promotional and marketing efforts, and provide content from third parties

OK
Become a Basic Member for free. Click Here

Industry Research : Failed Security Audits Due to Unenforced Digital Identity Policies and Rogue Certificate Authorities are Costly

#contactcenterworld, @keyfactor

Keyfactor, a provider in securing digital identities, and the Ponemon Institute released the 2020 UK edition of "The Impact of Unsecured Digital Identities", a benchmark report exploring enterprises’ ability to manage increasing numbers of cryptographic keys and digital certificates securing network connections.

Regulatory measures such as GDPR put focus on data privacy at design, tightening requirements and guiding IT security controls like Public Key Infrastructure (PKI). Continued adoption of IoT, cloud and mobile technologies are increasing the number of digital certificates and keys that ensure secure connections and identity authentication through PKI.

"This research demonstrates that despite heightened compliance focus, businesses struggle to manage foundational security like PKI and the tools and processes that maintain it. This is concerning, especially as the number of digital certificates and keys within enterprise continues to multiply," said Chris Hickman, chief security officer at Keyfactor.

Half of respondents indicate regulatory compliance as a strategic priority and two-thirds say their organisation is adding additional layers of encryption to comply with regulations and IT policies. However, undocumented or unenforced key management policies are problematic, with respondents averaging more than four failed audits or compliance experiences in the last 24 months.

"Less than half of respondents say they have sufficient staff dedicated to PKI," said Hickman. "A lack of program ownership, combined with the constant care and feeding that digital identities need, has introduced new risk, creating an exposure epidemic. Unless leaders invest in in-house processes and outsourced resources to manage PKI, enterprise will risk failed audits, fines and worse, a security breach."

Additional key findings reveal:

  • A rise in security incidents: on average, organisations experienced a Certificate Authority (CA) or rogue man-in-the-middle (MITM) and/or phishing attack four times in the last 24 months, facing a 32% likelihood of a MITM or phishing attack over the next 24 months.
  • Staffing shortages: on average, 15% of IT security budget is spent on PKI deployment annually, yet just 43% of respondents say their organisation has enough IT security staff members dedicated to PKI deployment.
  • Lack of visibility: 70% of respondents say their organisation does not know how many digital certificates and keys it has within the business.
  • Cryptography related security incidents undermine trust: 68% of respondents say failure to secure keys and certificates undermines the trust their organisation relies upon to operate.
  • Cryptography lacks a center of excellence: despite the rising cost of PKI and growth of cryptography-related incidents, just 40% of companies have the ability to drive enterprise-wide best practice.
  • Spending trend: represented organisations are spending an average of £37M on IT security annually, with £1.37M dedicated to PKI.

"Our 2019 reportin North America was a wake-up call in many ways – it was the first report of its kind to investigate the role that digital certificates and keys play in creating trust and supporting security," said Dr. Larry Ponemon, founder of the Ponemon Institute. "This year we expanded the report’s boundaries to examine the state of PKI within the United Kingdom. While UK-based organisations score slightly higher than their North American peers on overall PKI program management, they’re struggling in compliance-related categories, which may expose greater operational and security risk."

The study was conducted by Ponemon Institute on behalf of Keyfactor and included responses from more than 400 IT and IT security practitioners in the United Kingdom across 14 industries including: financial services, healthcare, manufacturing, retail and automotive.

#contactcenterworld, @keyfactor


About Keyfactor:
Company LogoFounded in 2001, Keyfactor is a market leader in comprehensive digital security management.
Company RSS Feed   Company Facebook   Company Twitter   Company YouTube   Company LinkedIn   Company Profile Page

Today's Tip of the Day - Answering Customers’ Questions

Read today's tip or listen to it on podcast.

Published: Friday, March 20, 2020

Printer Friendly Version Printer friendly version

2020 Buyers Guide Translation Services

 
1.) 
OpsTel Services

Platform Data Transformation
OpsTel is proud to provide our clients with a software automation service that is used to aid in the transition from one platform to another utilizing both speed and accuracy. Whether it is going from premises to premises, premises to cloud, premises to private cloud or even a hybrid deployment; OpsTel has the ability to help cut your transition time so you can focus your efforts on remaining architecture priorities.

We’ve observed conversions as high as 85% - in as little time as 30-minutes - with remaining client specific complex integrations being done by employees or professional services of your choice leveraging our Platform Data Transformation™ solution.

Features include:

*T...
(read more)
PH: 1+480-435-9390

2.) 
Tru29 Outsource Solutions Inc.

Back Office Solutions
Although the customer-facing type of tasks is essential to good customer experience, tasks being done in the background is as important.

Tru29 has been providing this type of outsourcing solutions to various businesses across the globe so you can be assured of a reliable and experienced workforce.
 

Industry Champion Award Leaderboard

Submit Event

Upcoming Events

Join professionals in the CX and contact center world at our online Expo, part of the 15th annual NEXT GENERATION Contact Center & Customer Engagement Best Practices event.

Attending the EXPO is FREE to any member of our association and you can me... Read More...
 1
 2043 
Share

Latest Americas Newsletter
both ids empty
session userid =
session UserTempID =
session adminlevel =
session blnTempHelpChatShow =
CMS =
session cookie set = True
session page-view-total =
session page-view-total =
applicaiton blnAwardsClosed =
session blnCompletedAwardInterestPopup =
session blnCheckNewsletterInterestPopup =
session blnCompletedNewsletterInterestPopup =