Gemalto’s 2018 Identity and Access Management Index surveyed more than 1,000 IT decision makers globally and has revealed that the majority (54%) believe that the authentication methods they implement in their businesses are not as good compared to those found on popular sites including Amazon and Facebook
Gemalto said “that the proliferation of cloud applications and use of a disparate range of devices within businesses has led to nearly two-thirds (64%) of IT leaders admitting that their security teams are considering implementing consumer-grade access to cloud services for employees.”
IT decision makers are keen to ‘consumerize’ the login process inclining that with a growing number of cloud apps in use, more employees working remotely and pressure mounting to make authentication stronger while ensuring ease of use. In fact, 52% percent of IT professionals believe that authentication methods applied in the consumer world can be applied secure access to enterprise resources.
Gemalto’s research has further divulged that 51% of IT leaders expressed concern about employees reusing personal credentials for work. At the same time, there seems to be increasing recognition that new approaches to cloud access can contribute to alleviating these issues. 55% of respondents believe that cloud access management can help simplify the login process for users, while 63% stated that a strong consideration for implementing a cloud access solution is the desire to reduce the threat of large scale breaches. The fact that 58% of respondents also stated that inefficient cloud identity management would be a key factor in adopting a cloud access management solution, shows that scalability and management overheads are also of high concern to IT professionals.
“These findings clearly show that IT managers are struggling to balance the need for a simple and easy login experience with security,” said Francois Lasnier, SVP Identity and Access Management at Gemalto. “While there is a need to make things easier for employees, there is a fine line to be walked. IT and business line managers would do best to figure out the risks and sensitivities associated with the various applications used in their organizations and then use access management policies to manage risk and apply the appropriate authentication method. In this way, they can ensure a convenient login experience for their users, while still maintaining access security.”
Other Key Findings in the Research includes:
- Over 50% Indian respondents believe that web portals and Cloud/Mobile applications are the biggest targets for cyber-attacks
- 68% respondents believe that lack of strong cyber security solutions to implement appropriate solutions and (66%) increasing volume of cloud applications making cloud applications more vulnerable to attacks
- 78% believe the use of two-factor authentication to protect applications in the future will increase within the next year
- Indian respondents are likely to use biometric (67%) and OTP based authentication (67%) in two years’ time
With the growth in remote working, the cloud and secure access to applications have become important for organizations. As a result, almost all (94%) respondents believe that cloud access management is integral to adopting cloud applications. In fact, nine in 10 also feel that ineffective cloud access management can lead to issues for their company, such as security (52%), IT staff’s time being used less efficiently (39%) and increased operational overheads and IT costs (38%).
Despite this focus on protecting cloud applications, just three of the 27 used on average by organizations are protected with two-factor authentication.
“The rapid increase of cloud apps has brought organizations lots of benefits, but also caused a high degree of fragmentation in their ability to manage access security across numerous cloud and on-premises applications,” continued Lasnier. “Without effective access management tools in place, this is liable to lead to higher risk of breach, a lack of visibility into access events, regulatory oversite – and hamper organizations’ ability to scale in the cloud.”
For more Click here