Many companies around the world have a 'mature' level of antivirus and antimalware software protecting their ICT networks, according to a new report from Microsoft.
The 'Trends in Cloud Computing: Cloud Security Readiness Tool' report surveyed data from 5,700 respondents around the world about the 'maturity levels' of their organisation's existing on-premises IT infrastructure.
The report utilised information from Microsoft's Cloud Security Readiness Tool (CSRT), which helps organisations to gain a better understanding of their own existing IT capabilities, evaluate cloud services in critical areas more easily and learn more about compliance issues.
The CSRT was first made available by Microsoft just over six months ago, and this new report presents an analysis of the response data from organisations who use it.
The survey assessed respondents using four different levels of IT maturity – 'getting started' (an undocumented, ad hoc state), 'making progress' (response-driven and following trends), 'almost there' (scaled response using programs) and 'streamlined' (centralised, automated, self-serviced and scalable).
According to the results, most respondents said that overall their IT organisations were still in the 'getting started' or 'making progress' state of maturity.
The answers that reflected the least amount of maturity involved human resources security (employment agreements), operations management (capacity/resource planning and equipment maintenance), information security (incident reporting) and legal (nondisclosure agreements).
However, the report did find that answers in the area of antivirus/antimalware software deployment and information security were the most advanced overall, followed by security architecture (clock synchronisation) and facility security (user access by role).
Despite this, the survey revealed that only 17 per cent of organisations have security programs that are formally managed, reviewed, audited and enforced, and many more still struggle to establish an effective policy.
"On average, 35 per cent of organisations worldwide are still struggling to establish uniform security policies and procedures across their environments," the report reads.
"Because such policies and procedures form the backbone of any organisation's security posture, it's essential for them to seek ways of maturing their programs to help establish better security postures."
The report may act as a timely reminder for organisations reviewing their vulnerability management procedures.
A high-level security breach can have damaging effects for any organisation, which is why regular penetration testing is so critical.
Using measures such as ethical hacking, Securus Global can undertake a thorough security audit of your organisation to ensure that any potential flaws in your ICT networks can be identified and resolved before they are exploited by others.