sb-nz logo
Story image

92% of businesses experience identity challenges - LastPass

15 Jul 2019

LastPass by LogMeIn has announced the results of a new study conducted by Vanson Bourne to offer businesses insights into the state of identity and access management (IAM) and actionable steps to improve their IAM programme.

The study, The Guide to Modern Identity, surveyed 700 global IT and security professionals at organisations ranging from 250 to 2,999 employees and found 92% are experiencing at least one challenge when it comes to identity management, with 47% citing ease of use with security as the biggest challenge. 

Data from the report reveals IT professionals overwhelmingly (82%) agree that poor identity practices have exposed their business to risks, citing incorrect access controls (41%), loss of employee data (36%) and loss of customer data (33%) as the biggest consequences. Despite this, many have not implemented an adequate identity management solution.

Additional findings include:

Passwords continue to cause frustration and risk

IT teams continue to spend valuable time and resources dealing with tickets for password-related problems.

On average, IT security teams spend four hours per week on password management-related issues alone and receive 96 password-related requests per month.

Given the ongoing resource drain that passwords pose to organisations, almost all (95%) of IT security professionals surveyed report that their organisation should place more emphasis on the importance of strong password behaviour.

Single Sign-On serves a crucial role – but leaves critical gaps in isolation

Given the risks and resource drain associated with passwords, SSO solutions offer the benefits of eliminating passwords for IT-supported apps and simplifying the login process for employees accessing key apps in the cloud and behind the firewall.

However, many apps aren’t integrated into an SSO solution – whether because they don’t support SSO, they’re not high enough priority for IT to configure SSO or IT doesn’t even know they’re being used.

Although our research shows that 80% of IT professionals agree that relying on SSO alone is not enough, as it still leaves a variety of cloud apps and privileged accounts unsecured.

Upgrading identity capabilities is a top priority 

98% of IT professionals surveyed see room for improvement in the general security behaviour of their employees (creating strong passwords, ensuring secure sharing and collaboration).

Due to competing priorities, IT teams are struggling to address their security needs.

When asked about next year’s IT security objectives, 65% agree that upgrading their Identity and Access Management capabilities is a priority.

When asked for ideal features in an identity solution, respondents noted multi-factor authentication (55%), integration with current infrastructure (52%), a built-in password generator (44%), support for both legacy and cloud apps (44%) and an integrated system for managing, monitoring and setting policies (44%).

Strengthening user authentication with MFA is critical

Among the key priorities for improving identity capabilities, 59% of IT professionals agree that strengthening user authentication with MFA technology is critical.

IT security professionals from organisations that have invested in or plan to invest in MFA see the most likely benefits as greater organisational security (60%), fewer instances of incorrect access to confidential information (48%) and decreased risk of credential/ password theft (47%).

Additionally, 36% of respondents see implementing biometric MFA as a priority.

Balancing ease of use and security is a challenge when implementing an identity solution

Given that security is a high priority for most businesses, it’s no surprise that many are investing in identity solutions.

Less than one% of IT professionals believe that managing user access is unimportant to the overall security of the organisation.

Unfortunately, 92% of organisations also say they are experiencing at least one challenge when it comes to identity management.

The average organisation struggles with three identity-related challenges: 47% of respondents said balancing ease of use with increased security was a hurdle, 40% cite the general security of their solutions and 37% are facing demands from employees for a solution that’s easy to use.

“When used individually, enterprise password management, SSO, and multi-factor authentication, all bring unique security and productivity benefits to a business,” says LogMeIn identity and access management business unit general manager John Bennett.

Story image
Check Point acquires Odo Security to bolster remote security offering
The deal will integrate Odo’s remote access software with Check Point’s Inifinity architecture, bolstering the latter company’s remote security capabilities in a time where working and learning from home has become the norm, and looks to largely remain that way in the near future.More
Link image
Webinar: Best practices for managing disparate security solutions
As budgets get more constrained, the emphasis shifts from merely finding threats to increased efficiency in managing security operations. Learn how to juggle a crowded field of solutions.More
Story image
NortonLifeLock introduces dark web monitoring to its security suite
Dark Web Monitoring Powered by LifeLock will be capable of monitoring the dark web, searching for over 120 personal identifiable information including email, physical address, phone number, driver licence number, credit card or bank account numbers and gamer tags.More
Download image
Equinix study: Firms turn to NFV to support distributed networks
Decision-makers looking for a solution that virtualises a wide range of network functions should evaluate NFV, study finds.More
Story image
Just one click – that’s all it takes to let in cyber-crime
So how do organisations ensure that users are not compromised by simply doing their work?  The answer is surprisingly simple, writes Bufferzone Security business strategist for A/NZ Greg Wyman.More
Story image
Video: 10 Minute IT Jams - The benefits of converged cloud security
Today, Techday speaks to Forcepoint senior sales engineer and solutions architect Matthew Bant, who discusses the benefits of a converged cloud security model, and the pandemic's role in complicating the security stack in organisations around the world.More