The Identity Defined Security Alliance (IDSA) today released a study entitled “Identity Security: A Work in Progress.” Conducted by Dimensional Research, the survey reached 502 IT security and identity-decision makers. The results reveal that a greater majority of organizations suffered an identity-related security breach over the past two years.
The IDSA serves as a group of identity and security vendors, solution providers, and practitioners, including Ping Identity, Optiv, Okta, and VMware; it acts as an independent source of thought leadership, expertise, and practical guidance on identity security. Meanwhile, Dimensional Research provides market research to help technology companies make decisions and provides expertise in corporate IT.
According to the report, 94 percent of organizations suffered an identity-related breach at some point. Additionally, 79 percent suffered such a breach within the past two years. 66 percent say phishing attacks constitute the most common attack vector for identity-related breaches. However, despite all of the threats facing businesses, less than half of respondents fully implemented key identity security outcomes. The survey found that forward-thinking and proactive security cultures have more success in repelling identity-related breaches than more reactive security cultures.
Julie Smith, executive director of the IDSA, gave a statement. “When approaching identity security, professionals must first consider a range of desired outcomes, or results they want to achieve, and then chart their paths accordingly. According to security and identity professionals, these outcomes are still a work in progress, with less than half reporting that they have fully implemented any of the identity-related security outcomes that the IDSA has initially identified as critical to reducing the risk of a breach. In fact, the research shows a clear correlation between a focus on identity-centric security outcomes and lower breach levels.”