This site uses cookies to provide you with a more responsive and personalized service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print page

Deloitte: 59% of telecom, media and technology organizations acknowledge experiencing an information security threat


  • Deloitte: 74% of  telecom, media and technology executives see increased usage of mobile devices as a threat to a company’s security
  • Deloitte study finds top tech, media, and telecom firms to strengthen cyber resilience through strategic security initiatives

11 February 2013 — Executives at the world’s largest Technology, Media and Telecommunications (TMT) companies have replaced compliance with implementing a 2013 security strategy and roadmap as the number one driver for improving information security, according to the Deloitte TMT Global Security Study just released. The study also reveals that companies are starting to recognize information security to be a fundamental business issue, with companies increasingly focused on cyber resilience, not just security.

The Deloitte survey, which also identified lack of employee awareness and third party risks as top security vulnerabilities, suggests that TMT organizations should also invest in information security training and awareness for their employees to help mitigate risks from new technologies.

“The question is not if you will be attacked: the question is when and how you will respond,” said Santino Saguto, partner in charge for the Telecommunications, Media and Technology (TMT) industry, Deloitte Middle East. “Effective management of information security risks requires a robust combination of prevention, early detection, and rapid response. Being cyber resilient is just as, or even more, important than being cyber secure alone.”

Partnering for cyber resilience

Additionally, results of the study suggest overconfidence in protection against external threats, with 88 percent of executives not viewing their company as vulnerable. However, when pressed further, more than half of the executives acknowledged experiencing a security threat in the last year (59%). Further, less than half of survey respondents reported having a response plan in place to address a security breach and only 30 percent believe third-parties are shouldering enough responsibility for cyber security.

“Every organization is vulnerable and 100 percent prevention does not exist. To help prevent attacks, detection and response are necessary. Ultimately, the public and private sector need to engage in a deeper collaboration in 2013 across all TMT sectors to develop a more robust response effort,” said Saguto. “Organizations should not only work with their third-party business partners to understand and improve their security practices, they should also engage policymakers, regulators and enforcement agencies and be willing to share their sensitive information to help address the global issue of cyber risk.”

Other major threats identified by respondents include advanced persistent threats (64 percent) and hacktivism (63 %), new to this survey, which combines social or political activism with hacking. While more than half of those surveyed gather general intelligence information, only 39 percent gather information about targeted attacks specific to their organization, industry, brand or customers.

People, technology and mobile devices

According to the survey, innovations in technology and the people using these technologies also rank as one of the biggest threats, with 70 percent listing their employees’ lack of security awareness as an “average” or “high” vulnerability. Employees without sufficient awareness of security issues may put an organization at risk by talking about work in public, responding to phishing emails, admitting unauthorized people into the organization’s facilities. The increased usage of mobile devices is also perceived as a high threat to organizations, with 74% of those surveyed identifying it as a top vulnerability.

Additionally, the study finds that new technologies exacerbate the problem. While they can provide powerful new capabilities that may benefit the business, they also introduce new security risks at a faster pace than many organizations can handle. Seventy-four percent of the executives ranked the mobile and bring-your-own-device technology trend as a continued concern but only half of the organizations surveyed indicated that they have specific policies for mobile devices in place.

Click here for the full TMT Global Security Study.


Last Updated: 

Material on this website is © 2014 Deloitte Global Services Limited, or a member firm of Deloitte Touche Tohmatsu Limited, or one of their affiliates. See Legal for copyright and other legal information.

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see “About Deloitte” for a more detailed description of DTTL and its member firms.

Get connected
Share your comments


More on Deloitte
Learn about our site