Over half of companies in Thailand are using cybersecurity infrastructure and software that should have been thrown out years ago, according to a new study by Cisco Systems.
The global survey, “Security Outcomes Study Volume 2,” interviewed more than 5,100 security and privacy professionals in 27 countries around the world, including more than 2,000 in APAC.
Respondents discussed their strategies for upgrading and integrating their cybersecurity architecture, detecting and reacting to threats, and remaining resilient during an attack.
Of the companies in Thailand that participated in the survey, Cisco found that roughly 52% of them still use security infrastructure and software that are not prepared to respond to current and emerging threats.
Respondents are not blind to their vulnerability; they believe their cybersecurity infrastructure is fragile (43% of responses) and complicated (28%).
In response, more than nine in ten respondents (93%) said their firm is adopting a “zero trust” cybersecurity approach, with 57% of those polled claiming their organization is making solid progress with doing so, and 36% claiming that they are at a mature stage of implementation.
A “zero trust” approach means that regardless of a user or device’s past behavior, the network will only trust it if its identity can be verified. If access is allowed, no matter how innocuous the request may seem, it will be monitored.
Furthermore, 93% of respondents said their company is investing in secure access service edge (SASE) architecture, with 55% claiming to be making excellent progress and 38% saying it’s at mature levels.
The SASE architecture is a security framework for enabling safe and quick cloud adoption while also protecting users and devices from unauthorized access to applications, data, and services.
According to Cisco, organizations with mature zero-trust or SASE infrastructure implementations are 35% more likely to report strong cybersecurity operations than those without or those still in early stages of implementation.
“In today’s digital-led business environment, security practitioners need to know what really works when it comes to building a strong security posture, while maintaining seamless user experience, thereby taking the guesswork out of what they should focus on and prioritize to keep the business and users safe,” said Juan Huat Koo, director of cybersecurity for ASEAN at Cisco.
In September 2021, Thailand’s National Cyber Security Authority (NCSA) announced that it was getting ready to develop cybersecurity skills for personnel working in seven sectors of critical information infrastructure (CII).
NCSA wants to target 2,250 trainees on a basic course and almost 1,000 specialists and executives in related courses by 2022 to deal with the increasing number of cybercrimes, particularly during the pandemic when more organizations have migrated their operations online.