About Juniper

Press Releases

Australian Organisations’ Ability to Quickly Detect and Prevent Cyber Attacks is Low

Most Companies Surveyed Reported an Average of Almost Two Security Breaches in the Past Year

SYDNEY, April 16, 2013 - Juniper Networks, the industry leader in network innovation, today announced the findings of a new Ponemon Institute report, revealing that IT and security professionals in Australia do not have confidence in their organisation’s ability to detect and prevent cyber attacks.

The Efficacy of Emerging Network Security Technologies study, commissioned globally by Juniper Networks, shows securing web traffic is by far the most significant network security concern for the majority of organisations (64 percent) surveyed. However, 47 percent of respondents agreed that emerging network security technologies are not as effective as they should be and do not minimise attacks that bring down web applications or gratuitous Internet traffic.

News Highlights

This report uncovered key concerns and security threats that the 485 Australian IT and IT security professionals surveyed encounter at their companies on a daily basis. Theft of their organisation’s intellectual property was cited as one of the concerns that keep them up at night.

Security posture of Australian organisations is low

  • When asked to grade their organisation’s approach to dealing with network security threats, on average, respondents said the security posture of their organisation is only 4.5 based on a scale of 10 being very effective.
  • Respondents also rated their organisation’s ability to quickly detect and prevent cyber attacks as poor (4.4 and 4.6, respectively on a scale of 10 being excellent) and their ability to minimise false positives in identifying and containing cyber attacks against networks as not very effective (4.3 rating).
  • Respondents were slightly more positive about their organisation’s IT security personnel in terms of their knowledge and expertise in managing emerging network security technologies, rating them 5.3 on a scale of 10 being the highest.
  • Australian organisations seem to recognise the need to attract competent and skilled security professionals with more than half (55 percent) of respondents saying emerging network security technologies used by their organisation are dependent upon in-house personnel who possess the knowledge and expertise to operate them effectively.

Web traffic security is the biggest security concern for Australian organisations

  • A majority of respondents (61 percent) said emerging network security technologies only address part of the cyber security threats facing their organisation.
  • Other top issues highlighted in the report include the problem of emerging network security technologies having high false positive rates (56 percent of respondents) and 54 percent say emerging network security technologies fall short of vendors’ promises.

More companies need to focus on holistic approaches to managing cyber security risks

  • The study found that Australian organisations in the survey focus on the inside-out threat and, do not take a more holistic approach to managing cyber security risks.
  • 58 percent of respondents agreed that their organisation primarily uses emerging network security technologies to minimise the inside-out problem and their approach is often to prioritize the point solution in managing cyber security threats. Only 37 percent say the holistic approach would be prioritised.

Efficacy of emerging network security technologies

  • More than half (51 percent) of respondents said their organisations use emerging network security technologies to heighten visibility to applications and the use of cloud services.
  • Intrusion Prevention System (IPS) and firewalls are considered the most effective features in the control of the security of the organisation’s network. The application control feature in NGFW (Next Generation Firewalls) is most often configured for monitoring and reporting only (50 percent of respondents).
  • Less than half (47 percent) of respondents say their organisation’s NGFW suffers performance degradation when deploying the IPS feature and 29 percent are unsure.

To effectively secure data centers Juniper Networks believes companies must have knowledge of the attacking devices, not just the IP address, and quickly disseminate that intelligence across the data center and into the network. Juniper Networks can deliver this intelligence through its Junos® Spotlight Secure global attacker intelligence service, which acts as the consolidation point for attacker and threat information, feeding real-time intelligence to Juniper’s security solutions. The first products to leverage Spotlight Secure security intelligence are Junos WebApp Secure and Juniper Networks® SRX Series Services Gateways.

Supporting Quotes

Juniper Networks

“This research worryingly indicated that organisations are aware emerging network security technologies are not as effective as they should be and only address part of the cyber security attacks perpetrated upon them. Companies need to renew their focus on zero-day defense and review their security investment weighting, to assess whether the areas of greatest risk are receiving adequate attention.”

- Greg Bunt, director, Security Sales, Asia Pacific, Juniper Networks

Ponemon Institute

“Respondents in Australia, China, India and Japan share common challenges in securing their organisations’ networks such as web-based attacks and denial of service attacks. It is interesting to observe that despite being armed with emerging network security technologies, organisations in Asia Pacific find themselves to be sitting ducks for external threats. Organisations need to reflect on the shortcomings of their existing inside-out approach and seriously consider investing in a more comprehensive and holistic approach to network security in order to keep pace with a constantly evolving threat landscape.”

- Larry Ponemon, Ph.D., Chairman and Founder, Ponemon Institute

Additional Resources:

The Ponemon Report surveyed 4,774 IT and IT security practitioners across the United States, Australia, United Kingdom, Germany, France, India, Japan, China and Brazil. In Australia, 485 IT and IT security practitioners took part in the study.

About Juniper Networks

Juniper Networks (NYSE: JNPR) delivers innovation across routing, switching and security. From the network core down to consumer devices, Juniper Networks' innovations in software, silicon and systems transform the experience and economics of networking. Additional information can be found at Juniper Networks (www.juniper.net) or connect with Juniper on Twitter and Facebook.

Juniper Networks and Junos are registered trademarks of Juniper Networks, Inc. in the United States and other countries. The Juniper Networks and Junos logos are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners.