New Research Finds 98 Percent of Organisations Plan to Implement Zero Trust Architecture
Despite staggering interest, a top barrier to implementing Zero Trust strategies is, surprisingly, concern over employees feeling trusted by their employer
London – August 25, 2021 – Illumio, Inc., the pioneer and leader of Zero Trust Segmentation, today released new findings that explore the state of Zero Trust in the United Kingdom. The research shows that nearly all (98 percent) of U.K. business leaders and IT decision makers either plan to or have already started implementing Zero Trust strategies at their organisations.
The report also revealed the challenges organisations face when implementing Zero Trust architecture. Respondents cited employee perception and resistance to change as the primary barriers to activating their Zero Trust plans. Notably, nearly a third (32 percent) of respondents expressed concern about employees thinking the company doesn’t trust them.
“This research makes one thing clear – U.K. business leaders and IT professionals know how important Zero Trust strategies are in making their organisations resilient, particularly as ransomware wreaks havoc across every industry,” said Raghu Nandakumara, EMEA Field CTO, Illumio. “It’s especially encouraging to see over 90 percent of organisations prioritising segmentation, since this is an essential control in keeping critical assets safe from attacks. Despite some technological and organisational barriers, we all need to start, or continue, making incremental progress on our Zero Trust plans. It’s better to be slightly more secure tomorrow than to have the perfect plan on paper in two years.”
Why are U.K. Organisations Adopting Zero Trust Strategies?
For organisations that have already adopted a Zero Trust approach, the top two reasons cited for implementation were either because it was a part of a strategy refresh on security infrastructure (48 percent), or to enable the business to improve its agility through digital transformation (47 percent). Furthermore, 60 percent stated the greatest benefit from their Zero Trust approach was feeling more confident they had secured their critical data and reduced their organisation’s risk exposure (54 percent).
Barriers to Implementing Zero Trust Architecture
The research revealed the technological, operational, and cultural barriers that prevent organisations from adopting Zero Trust. The main technological barriers included legacy systems that couldn’t be upgraded (29 percent) and cost constraints (22 percent). Culturally within organisations, 33 percent of respondents said their business was resistant to change unless mandated by compliance regulations. As mentioned, 32 percent feared that their employees would think that they don’t trust them – though it’s important to note that Zero Trust grants trust to users, devices, and applications once they are verified.
How Organisations Approach Zero Trust
Zero Trust is a strategy and philosophy, and no one technology can make an organisation achieve Zero Trust overnight. An essential pillar to any Zero Trust strategy is segmentation, and the vast majority of organisations (92 percent) are segmenting their networks in some way. While a lot of respondents are using legacy approaches like virtual firewalls (52 percent) and network-based segmentation (49 percent), many said that they’re also taking a more modern, scalable approach and segmenting by application characteristics (32 percent), or implementing workload based micro-segmentation (32 percent).
Find the full research report here. For more information, join us for a webinar on September 29 at 10:00am BST. Register here.
The survey was conducted among 203 U.K. Senior IT security decision makers, from companies with more than 250 employees. At an overall level, results are accurate to ± 6.9 percent at 95 percent confidence limits assuming a result of 50 percent. The interviews were conducted online by Sapio Research in June 2021.
Illumio, the pioneer and market leader of Zero Trust Segmentation, stops breaches from becoming cyber disasters. Illumio Core™ and Illumio Edge™ automate policy enforcement to stop cyberattacks and ransomware from spreading across applications, containers, clouds, data centers, and endpoints. By combining intelligent visibility to detect threats with security enforcement achieved in minutes, Illumio enables the world’s leading organisations to strengthen their cyber resiliency and reduce risk.
Code Red U.K. for Illumio