You're watching...
Karim Toubba, Juniper Networks VP of Security Strategy, on the cost and cleanup of security breaches for companies.
Also in this playlist...
Auto-advance: ON
Auto-advance
This transcript is automatically generated
-- are right well what do you study -- -- the -- -- common -- they've all been hacked recently but they're not alone according to a new survey.
Hackers were able to -- network security defense is nearly 90% of the time so what do companies need to do.
To keep from being -- going for joining us now scream -- -- vice president at security strategy Juniper Networks a company that sponsored the survey.
Welcome to the show and yeah -- -- I it was really is surprised by some of the results of this survey where you interviewed over a thousand CIO's.
About security give us some of the highlights that we can express.
Our viewers yes sure it was a very interesting survey results as you mentioned there -- over a thousand CIOs that we're serving as part of this.
I'm across a multitude of industries.
And -- while we see the high level Sony city -- other organizations being attacked what was interesting about this is that over 90% of these companies said that they've suffered a breach.
Over the course of the last twelve months.
And was really -- -- is that a large percentage of those said that they suffered multiple breaches and that same timeframe.
And on average these -- -- somewhere north of half million dollars on a per incident basis.
Well you know we see and we also see this anecdotal evidence in the newspapers Sony stayed -- and the government's not immune we've seen the FBI and the night and that's also.
Seen their security systems -- twice as happening all of a sad then what see onslaught.
-- yeah well what's really -- thing is that over the course of the last two to three years we've seen a significant amount of sophistication.
That is -- from that hacker community and if you look at the -- a community as a whole.
There's three sort of bad sets a bad actors.
There is the activists everybody knows cement had lol security anonymous and others that are really sort of trying use hacking.
To forward political points there's the attack a community of old which was really all about notoriety they wanted to be known now -- -- to model of profitability.
Because what they're doing is they're trying to extract sensitive information.
A lot Sony credit card information write personal information Citi -- -- Citi bank they can then be resold on the black market because each of these assets.
Have actual monetary value and they built -- business model around that.
I think to your point these malevolent attacks seem to really Yankee -- might get my attention.
I just attacking just a question -- -- hurt these companies may be because the multinational the government agencies.
What kind of threat does that pose to the general public.
Well you know the reality is.
We all have sensitive information inside of all these organizations right I had a -- bank account I may be someone that plays with -- system online.
And the challenge with the general public is twofold first -- -- is my privacy.
Takes on my credit card information and other assets the second aspect that hurts business in directly through the consumers that it really erodes the confidence of the consumer.
Especially as more organizations and.
To whom the wire these businesses -- pocket they -- that is -- that you know -- bonds jumped talk continue to acquire and priority do you got what more business but it seems a name it's they continue to -- when it comes to making real investments needed to protect us and information.
-- today it's it's a good point you make -- they're actually not cheap the survey results showed that over recorded these companies spend about 25% of their entire IT budgets.
Specifically on security apology yes.
It's a sizable investment.
The real challenge is the old world of security was build the most secure the perimeter.
But the reality is that model doesn't apply I mean if you think about the perimeter of an enterprise or an organization.
It's gone I now have ipads iphones.
So they have to extend the security model from the device to the network all the way through to the application and organizations are just the beginning -- -- starting to -- that we've.
Ten seconds before we let -- -- cream let our our viewers know what they can do to protect themselves we don't wanna leave everything in the hands of corporations what can they -- to also.
Increase their security.
Best thing you can do particularly personal devices whether to notebook netbook or Smartphone is locked down that device but softer on.
