A recent survey of 300 security professionals has revealed that 34 per cent admit to bypassing security checks for the sake of bringing products to market faster. The research, carried out by cyber assessment company Outpost24, questioned those who attended the InfoSecurity Europe Conference held in London in June 2019.
Aware of the risks
64 per cent of those surveyed believed that their customers could be affected by data breaches. This is due to unpatched vulnerabilities in the organisations’ products and applications. When asked whether the products to be sold by the company would perform well under penetration testing, 29 per cent of respondents were either unsure or did not believe the products would fare well.
The results of the survey revealed that a high number of organisations share the same attitude towards security testing in the sense that, despite knowing they should do it, they don’t make the effort to do so.
Failing to introduce security testing
Although 92 per cent of professionals agreed on the importance of carrying out security testing on new products and applications, 39 per cent said their organisations failed to introduce security testing from the beginning.
Bob Egner, VP at Outpost24, said: “Our study shows that even despite continuous warnings, organizations today are still leaving their customers at risk because of a failure to address security vulnerabilities in products before they are introduced to market. If organizations are not addressing these security vulnerabilities, they are taking a huge gamble and abusing customer trust.”
Egner predicts a dark future for companies who overlook suitable testing to get the product out sooner.
He said: “Negligence towards security will eventually lead to disastrous outcomes for technology and application vendors and their customers. There should be no excuses today, especially when security is such a big issue and so many breaches, which have happened up and down the technology stack, are well-publicized.”
Egner also advised organisations to be more considerate of their customers by using penetration testing and automated application scanning to check for vulnerabilities before putting products and applications on sale.
Join us for our 16th biannual where we will explore the current climate and future projections for the conference on the 7th November environment at the strategic, enterprise-wide level, how to mitigate ethical and privacy issues, innovations in people and processes, and highlight best practice in digital transformation and becoming a data-driven organisation.