Two different surveys have been published in the past several months looking at the state of endpoint security, with particular respect to the mobile endpoint. The surveys mostly agree and cover the usual security chestnuts, but both have some interesting and unexpected results, too.
Looking Ahead With Endpoints
The first is an IBM-sponsored study titled “Can We Say Next-Gen Yet? State of Endpoint Security — A SANS Survey” and comes from the SANS Institute. It stated, “The understanding of what constitutes an endpoint is changing rapidly as the network perimeter is dissolving … [and] a wider variety of devices is being connected to the network.”
This is especially the case thanks to the mobile endpoint, which is changing the landscape of mobility and connectivity in the enterprise. Interestingly, the survey found retailers aren’t the only ones using point-of-sale (POS) devices — they’re becoming prevalent in other types of organizations as well. Additionally, 9 percent of the respondents have connected wearable devices to their enterprise networks.
Also interesting is that POS systems and wearables are more likely to be covered by security vulnerability management programs — even more likely than network-connected printers, which have been around for decades.
Sadly, printers are often used as entry points by cybercriminals. The SANS report strongly recommended that organizations take a closer look at their printer fleet and include them in their vulnerability management initiatives in the near future.
The Mobile Endpoint Brings Several Challenges
The second survey is the “2016 State of the Endpoint Report,” published by the Ponemon Institute and sponsored by CounterTack. It found that 60 percent of respondents said it was more difficult to manage endpoint risk in the past 24 months because of increased focus on the mobile endpoint by malware.
One issue is that the majority of IT departments feel they don’t have sufficient resources to protect their networks: Only 36 percent of respondents in this year’s study feel that they have ample budget and staff to manage their endpoint security properly, while 71 percent stated their security policies are difficult to enforce.
Counterbalancing this is the fact that the endpoint as a security sensor is becoming more of an option for organizations. More than half of those surveyed by Ponemon indicated they are either doing this today or plan to do so in the next two years.
Both surveys found that companies are being more proactive in finding breaches: SANS reported 21 percent of this year’s respondents have detected compromised systems ahead of any alarms or other indications, compared to 16 percent last year. The notion of hunting for exploits ahead of time is certainly catching on.
Finally, SANS suggested that IT should “involve all stakeholders whenever making decisions about endpoint management. The evolution of endpoints means that processes for managing them will also evolve” — pretty sage advice.