One in ten IT professionals cheat on firewall audit

IT professionals may not be following the Government’s lead towards transparency, according to a new survey.

Vulnerable computers

A survey released today has revealed infrequent firewall audits have led to questionable actions in the private IT sector and could lead to security risks.

The research, by Tufin Technologies, showed one in 10 IT professionals admitted they or a colleague had cheated on an IT audit to make it pass muster.

A lack of time and resources were the main reasons given by those who admitted to cheating, the survey said.

Michael Hamelin, chief security architect at Tufin Technologies, said companies that conduct audits irregularly are a cause for concern because out of sync firewall rules leave networks open to exploitation.

"Without the right automation tools, managing firewalls is complicated and time consuming making it very tempting for IT professionals to cheat to get their audit passed. But in the long run it will only cause more problems," Hamelin said.

Of the 242 respondents, 25 per cent said firewall audits took a week to conduct, and 30 per cent said they audited only once every five years.

More than a third of respondents said their firewall rule bases were a mess and were susceptible to hackers, network crashes and compliance violations.

The research comes at a time where the new coalition Government is making efforts to be more open with its data, releasing the numbers on public sector spending and IT contracts.

However, the survey claimed private IT companies only invested into and pay attention to the firewalls selection process, instead of following them up and making sure they were fully optimised.

Featured Resources

How to scale your organisation in the cloud

How to overcome common scaling challenges and choose the right scalable cloud service

Download now

The people factor: A critical ingredient for intelligent communications

How to improve communication within your business

Download now

Future of video conferencing

Optimising video conferencing features to achieve business goals

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Recommended

IT security awareness and training firm KnowBe4 acquires MediaPRO
Acquisition

IT security awareness and training firm KnowBe4 acquires MediaPRO

3 Mar 2021
High-risk email security threats increased by 32% last year
phishing

High-risk email security threats increased by 32% last year

3 Mar 2021
The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

3 Mar 2021
Microsoft Exchange targeted by China-linked hackers
zero-day exploit

Microsoft Exchange targeted by China-linked hackers

3 Mar 2021

Most Popular

Star Alliance passenger data stolen in SITA data breach
data breaches

Star Alliance passenger data stolen in SITA data breach

5 Mar 2021
I went shopping at Amazon’s till-less supermarket so that you don’t have to
automation

I went shopping at Amazon’s till-less supermarket so that you don’t have to

5 Mar 2021
How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

26 Feb 2021