In the era of complex hybrid and hybrid environments, institutions are struggling with determining the risk of defining the most sensitive assets, determining and mitigating their priorities.
In response, the cloud safety alliance (CSA) today released a report of data security risk surveying. Commissioned by Thales, a technical and security provider, the report shares critical visions of the obstacles facing organizations when managing their data safety risks and provides implemented steps to secure their most sensitive assets.
“To successfully navigate the complex risk environment today, organizations must improve their strategies. Enhancing risks awareness, enhancing the extensive team alignment, unifying fragmented tools in cohesive platforms, adopting proactive and risky methods, allows institutions to enhance flexibility, protect critical data, and simplify the compliance of the security of the cloud.
The study studied the methods of companies, governance and compliance with companies to assess data risks across their assets, specifically how to identify them, classify them and evaluate risk, as well as tools they use to monitor, evaluate and reduce them. The survey also sought to define the main challenges facing organizations when trying to obtain a comprehensive vision of the risk position to reduce the effectiveness of the potential response and disruption. Among the results:
Many institutions lack tools and confidence to determine high -risk data sources, as 31 % informed insufficient tools and about 80 % of low confidence or without confidence in their ability to address these risks.
The spacing between the administration and the employees is focused on creating shortcomings. Executive officials give priority to align security efforts with wider work targets (41 %), while operational teams face resources and highly depend on handicrafts (22 %) or semi -automomomomable (54 %).
More than half of the organizations (54 %) use four or more tools to manage data risks, which leads to inefficiency and conflicting information.
Compliance remains a major driver to reduce risk (59 %), but the intense focus on organizational commitment often leaves organizations not ready for emerging threats.
Organizations began to give priority to risk -based curricula, while determining the arrangement of weaknesses and determining their priorities as top priorities.
While organizations continue to face a rapidly changing threat scene, as the complexities of hybrid and multi -fluid environments display new weaknesses and challenge traditional risk management strategies, the survey found that by obtaining a deeper understanding of their data risks, institutions can close confidence gaps, simplify operations, and remain on advanced threats.
“In 2025, organizations must move from an approach that focuses on purely compliance with a more active strategy and focuses on risks. This requires a clear understanding of the main dimensions, including organizational risks, asset risks and organizational risks. The vision of the risk must be quantitative measuring and determining its priorities according to its potential impact on work. By taking advantage of the indicators of the main data risk of data real estate from database In the whole, institutions can create an enabled risk display that enables them to make enlightened and effective decisions to enhance data security. “
Thales funded the project and participated in the development of the questionnaire with CSA research analysts. The online survey was conducted by CSA in November 2024 and received 912 information technology response and security specialists from organizations of various sizes and sites. CSA research analysts analyzed and interpreted this report.
Download the full data security risk survey report.
