Brazil is among the most vulnerable countries when we talk about information security. This is what the study sponsored by IBM pointed out and conducted by the Ponemon Institute on the financial impact generated by data violation, “ Cost of Data Breach Study 2016 ”.
At the top of the list of 12 countries, Brazil is followed by South Africa, France, and India.
In just one year the number of occurrences of information theft increased by 2.100% in Brazil, from 3,900 to 85,400 and generating an average loss of R $ 4.1 million to Brazilian companies.
Worldwide were conducted more than 1,500 interviews in 383 organizations from 16 industries and 12 different countries. In Brazil the study raised information from 33 companies from 12 different industry sectors.
In addition to the growth of data loss, the study showed that the average cost for each occurrence of data violation increased from R $ 116.00 in 2013, to R $ 175.00 in the previous year and now reached R $ 225.00.
The report also pointed out the causes in data violation incidents:
- Attempts at malicious or criminal attacks from third parties: 40%
- Negligence and lack of information management: 30%
- Human Failures: 30%
This scenario shows the need for more companies attention to information security, and is no longer desirable, for a mandatory need for the survival of organizations.
Risk Reduction Measures
Among the companies that had some kind of data violation, the preventive measures taken were:
- Expansion in the use of encrypted data - 47%
- Manual procedures and additional controls - 46%
- Team Training and Awareness - 43%
- Perimeter and navigation security and controls - 40%
Considering that information is the biggest assets of companies, it is necessary for these to worry and invest more in improving information security practices. So that we can control this apparent uncontrolled growth and information theft in companies in the future.
In the global context of the study, a survey of over 2,000 organizations was conducted. It is possible to list the 7 main points that are considered to defend themselves from possible attacks and data violations, which are:
1. Investment against information violation is permanent. Organizations need to include in their planning security budget in order to be able to implement their information protection strategies;
2. There are serious risks of business commitment as a consequence of loss of information . Companies need to take steps to retain consumer confidence and reduce long -term financial impact;
3. Third party attacks remain the biggest problem . These types of attacks are usually of greater severity, demanding a lot of time to be repaired, generating greater damage;
4. The more time to solve the problems, the more damage. Measures should be taken that streamline the detection and solution of possible problems;
5. Health areas and financial services are the largest targets. Most important data need greater protection.
6. Expansion in governance programs. Actions to train, raise awareness and manage employees and leaders.
7. Collaboration is increasingly important. The study showed that there was a reduction in costs when companies shared information on attacks and implementation of technologies for data loss prevention.
Share in the comments your experience or opinion on the information security measures performed in your company!
If you want to know more about how you can increase the security in the use of the internet in your company , please contact us .
1 comment
Comments closed