Infinipoint Survey Reveals High Interest in Zero Trust for Device Access but Obstacles Are Holding Back Implementation

Survey Also Indicates Security Teams Have Relatively Low Confidence in their End-User Device Security Posture

A study by Infinipoint, the first solution provider to offer Device-Identity-as-a-Service (DIaaS), and Virtual Intelligence Briefing (ViB) has revealed a significant gap between a high level of interest in Zero Trust for device access yet relatively low adoption due to obstacles in implementation. Surveying 388 IT and security professionals, “Zero Trust and the Challenge of Device Security” explores the challenges inherent in device security, along with the potential of a Zero Trust security model to be the basis of a lasting solution.

Marketing Technology News: CallTower Launches One Click Failover Solution for Microsoft Teams

Priorities and Implementation Tell a Conflicting Story

68% of respondents said they are planning to use Zero Trust for device security, however more than half (56%) said they are not implementing the model now. There is a notable split between intent and action, with implementation falling behind interest in the Zero Trust for device security model.

Overall, about 30% have either completed a Zero Trust implementation or are in the process of implementing. Of those who have an active Zero Trust model in their organization today, only 42% have enabled it for devices, the 4th lowest category behind Zero Trust for networks, user access and applications. Other obstacles impeding implementing Zero Trust for device access include concerns around IT support issues, administrative burden, disruption to end user access and lack of remediation options.

Respondents stated that updating software patch levels for critical vulnerabilities was one the biggest security challenges they face (33%). 31% also identified gaining visibility into which devices are accessing which services as a significant challenge.

Low Confidence in Device Security – Yet Device Posture Checks Are Under-Utilized

Trends such as remote work are exacerbating devices’ tendency to expose organizations to cyber risk. Unsurprisingly, more than 82% of IT and security professionals agreed that the increase in remote workers has increased overall organizational risk.

Surprisingly, only 27% of respondents shared that they were “very confident” that end-user devices connecting to company applications were secure. 63% claimed that they were “somewhat confident.”

To help mitigate risk, 69% of respondents shared that it is very important that only devices that have been validated to be compliant with their organization’s security policy are allowed to access corporate services and applications. In addition, 54% consider security posture checks continuously upon user access to be “very important.” However, only 28% of respondents say they are conducting security posture checks. Even fewer are doing it continuously, with only 35% of those doing security posture checks continuously upon access. 29% only do security posture checks on a monthly—or longer—basis.

To stop device-related threats, 73% of respondents rely on firewalls, with 70% using malware or antivirus protection, 68% implementing endpoint protection platforms (EPP), and 51% using extended detection and response (XDR) solutions. However, even with a combination of these tools in place, confidence in current device security is low.

Marketing Technology News: MarTech Interview with Marc Ginsberg, CEO at CallRail

Working through the Obstacles of Implementation

“Zero Trust offers a way to bolster device security posture for end user devices and access control but legacy tools have not fully addressed the implementation obstacles to apply Zero Trust to device access,” said Ran Lampert, co-founder and CEO, Infinipoint. “Infinipoint has addressed these obstacles head on, enabling our customers to apply Zero Trust principles to device access in a simpler, more automated, and scalable fashion, with a frictionless and productive end user experience.”

Brought to you by
For Sales, write to: contact@martechseries.com
Copyright © 2024 MarTech Series. All Rights Reserved.Privacy Policy
To repurpose or use any of the content or material on this and our sister sites, explicit written permission needs to be sought.