1 out of 4 organizations have failed a security audit. will you be one of them?
TRANSCRIPT
1 OUT OF 4 ORGANIZATIONS HAVE
FAILED A SECURITY AUDIT.
WILL YOU BE ONE OF THEM?
Enterprises can no longer afford
infrastructure and governance silos that
increase exposure to security and
compliance risk...
…and reduce adaptability to new
business and operating models.
IT should focus on a shift to a
comprehensive managed file transfer
(MFT) solution.
A “central governance” layer over the
various components of the existing
middleware stack is essential for
ensuring data security and
governance…
…across integration flows which
connect a range of applications,
services, users/devices, and trading
partners/customers.
Key results from an extensive survey of
450 senior IT decision makers:
On average, 32% of business-critical
processes involve file transfers and
about 4% of FTP-based file transfers
fail.
This indicates that at least 1.3% of
business-critical processes involving
FTP-based file transfers will suffer
failures.
The average total cost of a data
loss/breach incident is $350 per
breached record (or $3 million, on an
overall basis).
About a quarter of survey respondents
revealed that their organization failed a
security audit in the last 3 years.
Furthermore, 17% indicated “no
confidence” in passing a compliance
audit with the existing file transfer
solutions.
While 38% of respondent enterprises
have already implemented an API
program…
…an additional 19% plan to implement
an API program in the next year.
This figure is expected to increase by
another 40% over the next 2 to 3 years.
While for 58% of respondent enterprises
data security, privacy, and governance
is an integral element of integration
strategy…
…an even greater share of respondents
(71%) revealed a disconnect between
integration strategy and data security
and governance frameworks and
policies.
About a third of the respondent
enterprises are using both on-premise
and software-as-a-service (SaaS)-based
file transfer solutions.
However, there is little inclination to
shift towards a “cloud-only” model for
delivery of file transfer capabilities…
…with only 11% relying on SaaS-based
file transfer solutions for all of their file
transfer needs.
A large section of respondent
enterprises (56%) are using discrete
solutions for on-premise application
integration, B2B integration, and cloud
integration.
Moreover, 46% of survey
respondents agreed that existing
enterprise service bus (ESB)/
service-oriented architecture (SOA)
infrastructure…
…offers less flexibility and is difficult to
maintain.
Key messages
FTP and other traditional and ad hoc
approaches to file transfer expose
enterprises to the risk of data breaches
and non-compliance with regulatory
mandates.
With IT under pressure to deliver new
capabilities under strict budget and time
constraints…
…the prospect of maintaining
infrastructure and resources to keep
traditional file transfer solutions up and
running is difficult to sustain.
A comprehensive MFT solution is
essential for meeting increasingly
complex data security and governance
requirements…
…as well as stringent regulatory
compliance mandates.
In addition to securing and governing
file transfers across internal and
external integrations…
…a comprehensive MFT solution will
allow governance of file transfers across
email solutions, collaboration tools, and
enterprise file sync and share (EFSS)
solutions.
A comprehensive MFT solution
simplifies community management to
allow rapid onboarding of new
customers and partners…
…and enables real-time monitoring of
business and technical key
performance indicators (KPIs).
IT should develop a strategy to
consolidate file transfer infrastructure
and processes to reduce infrastructure
footprint and maintenance and support
costs.
A comprehensive MFT solution will
provide the flexibility required for
meeting new business requirements…
…which would otherwise require
significant custom development effort.
There is a growing need to shift from
“governance silos” to a “central
governance” layer offering a common
view of data flow to all stakeholders…
…both at a business process level and a
technical level, across the various
processes, applications, communities,
and users/devices involved in
application and B2B/MFT-based
integration.
This layer will allow IT to centrally
manage user identities and access
rights…
…and provide a single point of
enforcement for security and
governance policies.
It is time that IT thought about using a
suitable combination of MFT, B2B
integration, and API management
solutions…
…for enabling, securing, and
governing interactions at and beyond
the edge of the enterprise.
CLICK HERE TO LEARN MORE NOW.