You are here

Bromium “State of Security Report Card” Reveals Legacy Solutions Failing to Prevent Attacks

Information Security Professionals Surveyed on Opinions Toward Popular Security Solutions; Survey Results Also Highlight Concerns About Information Sharing Initiatives

SAN FRANCISCO, Calif. — RSA CONFERENCE 2015 — April 23, 2015 — Bromium®, Inc., the pioneer and leader in transforming endpoint security using micro-virtualization, today announced the results of its “State of Security Report Card,” a survey of more than 100 information security professionals at the RSA Conference in San Francisco. The survey results reveal that legacy solutions such as firewalls and antivirus are failing to prevent attacks and address the priorities set by their CISOs.

“The results of this survey serve as yet another proof point in a long line of data about the shortcomings of legacy security solutions,” said Clinton Karr, Sr. Security Strategist, Bromium. “Even if you cling to the belief that AV is not dead, the industry seems to be aware that it is in critical condition and is putting more stock in next-generation solutions.”

Specific findings from the “State of Security Report Card” include:

  • Organizations have room for improvement in prioritizing security — Bromium asked RSA conference attendees to grade their organizations on its ability to prioritize security by allocating the resources they require from A to F, and the majority gave their organizations a B or C:
    • A grade: 8 percent
    • B grade: 42 percent
    • C grade: 32 percent
    • D grade: 18 percent
    • F grade: Zero
  • Firewalls and Anti-virus are failing to prevent attacks — The survey asked RSA conference attendees to grade a variety of security solutions on their ability to prevent attacks and address the priorities set by their CISOs. Twenty percent of respondents gave firewalls a failing grade and 25 percent gave antivirus a failing grade. Among the most popular responses, 42 percent of respondents gave firewalls a B and 36 percent of respondents gave antivirus a C.
  • Next-generation solutions are performing above average — Next-generation firewalls, network sandboxes, endpoint isolation, host monitoring and threat intelligence solutions all performed well. None of these solutions were given a failing grade. Here is a breakdown of the most popular responses:
    • 58 percent gave next-generation firewalls a B (17 percent gave it an A)
    • 54 percent gave advanced threat protection/network sandboxes a B (20 percent gave it an A)
    • 64 percent gave endpoint isolation/sandboxing/host monitoring a B (17 percent gave it an A)
    • 44 percent gave threat intelligence a B (17 percent gave it an A)
  • Information Sharing Initiatives Show Promise; Face Hurdles — Bromium asked RSA conference attendees if their organizations would benefit from information sharing initiatives, such as those outlined in President Obama’s Executive Order, and if their organizations would participate. The overwhelming majority (78 percent) said they would benefit from information sharing initiatives, but less than half (48 percent) said they would participate. There is clearly a disconnect in these results, which suggest that information security professionals are concerned about how information sharing initiatives will aggregate and anonymize their organization’s data.

Survey Methodology

Live interviews were conducted with more than 100 RSA USA Conference attendees between April 21 and April 22, 2015.

About Bromium, Inc.

Bromium is re-inventing enterprise security with its powerful new technology, micro-virtualization, which was designed to protect businesses from advanced malware by design, while simultaneously empowering users and delivering real-time threat intelligence to IT. Unlike traditional security methods, which rely on complex and ineffective detection techniques, Bromium protects against malware from the Web, email or USB devices, by automatically isolating each user-task at the endpoint in a hardware-isolated micro-VM, preventing theft or damage to any enterprise resource. Bromium’s technological innovations have earned the company numerous industry awards. Bromium counts a rapidly growing set of Fortune 500 companies and government agencies as customers.

Visit Bromium:
Read the Bromium blog:
Follow Bromium on Twitter:
Follow Bromium on LinkedIn:

# # #