Most security pros think a WAF is high maintenance
An organization’s web application firewall (WAF) is a critical line of defense in protecting proprietary and customer data, but the concern is that some organizations are spending an outsized allotment of resources on modifying these mission-critical elements, a Neustar report reveals.
The survey showed that nearly 85% of organizations feel they are spending at least a moderate amount of time on modifications, with almost 40% noting they spend a lot of time.
Moreover, a majority of organizations have siloed their data center services away from cloud services — nearly four in five surveyed — which could have the unintended consequence of increasing labor-intensive protection processes.
Orgs often communicating with their WAF vendors’ SOC
According to survey findings, half of organizations are communicating with their WAF vendors’ security operations centers (SOC) on at least a monthly basis to manage security threats, while another third are communicating bi-monthly.
DDoS attacks continue to be the top concern among organizations, with 22% citing such attacks as the highest potential threat. Further, organizations are well acquainted with the repercussions of DDoS, with 75% reporting they have been on the receiving end of such an attack.
“Organizations may have a highly tuned, up-to-date WAF on premises, but the sheer amount of traffic and potential threats can ensnare resources and impact the ability to introduce greater precision to those key systems,” said Rodney Joffe, Chairman of NISC, SVP and Fellow, Neustar.
“Steps can be taken to maintain the integrity of security systems, and potentially enhance performance, by augmenting efforts with third-party, always-on security resources.”
According to Joffe, such solutions can help mitigate bot-based volumetric attacks as well as other common threats that can target an application layer.
Further, Joffe notes, “Some of the most robust cloud-based solutions can provide consistent coverage wherever an application is hosted, whether it’s a data center or the cloud. The right SOC support provides assurance that emerging threats are being neutralized, enabling organizations to focus their efforts on honing their WAF for optimal performance.”
The highest perceived threats
Findings from the research highlighted a 12.8-point year-on-year increase in the International Cyber Benchmarks Index. Calculated based on the changing level of threats and impact of cyberattacks, the index has maintained an upward trend since May 2017.
During November and December 2020, in addition to DDoS as the greatest concern for security professionals, system compromise (20%) and ransomware (18%) ranked among the highest perceived threats.
During this period, organizations have focused most on increasing their ability to respond to targeted hacking (54%) and vendor or customer impersonation (54%), followed by an equal focus (51% across the board) on DDoS, supply chain compromise (cyber) and ransomware.