Annual SolarWinds Study Reveals Opportunities for Business and IT Collaboration in Managing Enterprise Risk Driven by Internal and External Security Threats
CORK, Ireland – July 28, 2021 – SolarWinds (NYSE:SWI), a leading provider of simple, powerful and secure IT management software, today announced the findings of its eighth annual IT Trends Report. This year's report, SolarWinds® IT Trends Report 2021: Building a Secure Future, released eight months after the broad and highly sophisticated SUNBURST cyberattack, is part of the company's commitment to leading industry collaboration and transparency to prevent future cyberattacks and help technology professionals navigate the new threat landscape. It examines how technology professionals perceive their organisations' risk management and mitigation readiness after a year of rapid transformation fueled by the global pandemic. The study analyzes the state of risk within the IT industry today and provides guidance on workplace strategy, tool sets, preparedness, and leadership for companies as they work to construct an organisation built to withstand risk.
Over the past year, tech pros were tasked with enabling a distributed global workforce and managing the adoption of public cloud services, as organisations quickly pivoted to implement a range of technologies to keep their businesses up and running during the pandemic. Against this backdrop, nearly every industry was confronted with the acceleration of high-level cybersecurity breaches, which highlighted the potential risk of incomplete security policies and procedures across the industry. This unprecedented upheaval has served as a critical catalyst for a broader exploration of organisations' exposure to enterprise IT risk of all kinds—including risk introduced by the implications of remote, distributed work—and the degree to which organisations are prepared to manage, mitigate, and prevent risk in the future.
The findings of the SolarWinds IT Trends Report 2021 uncover a reality in which exposure to enterprise IT risk is common across organisations but perceptions of apathy and complacency surrounding risk preparedness are high as businesses exit a year of pandemic-driven "crisis mode." Tech pros have outlined key areas of technology investment and upskilling to prioritise AI/machine learning, managed services, and cloud-hosted database platforms—demonstrating an inherent awareness that falling behind is potentially the greatest risk of all. This year's study reveals the immense opportunity ahead for tech pros and IT leadership to align and collaborate on priorities and policies to best position not only individual organisations but the industry at large to succeed with a future built for risk preparedness.
"Technology professionals today are under even greater pressure to ensure optimized, secure performance for remote workforces while facing limited time and resources for personnel training. When it comes to risk management and mitigation, prioritizing intentional investments in technology solutions that meet business needs is critical," said Sudhakar Ramakrishna, President and CEO, SolarWinds. "More than ever before, tech pros must partner closely with business leaders to ensure they have the resources and headcount necessary to proactively address security risks. And more importantly, tech pros should constantly assess their risk management, mitigation, and protocols to avoid falling into complacency and being 'blind' to risk."
2021 Key Findings
SolarWinds IT Trends Report 2021: Building a Secure Futureexplores how tech pros perceive the state of risk in today's business environment, and how the global pandemic impacted technology investments across IT teams. Key findings show:
Security threats associated with external breaches and the internal impact of COVID-19 IT policies emerged as the leading macro trends influencing enterprise IT risk today.
- 38% of overall tech pro respondents state their organisations have had medium exposure to enterprise IT risk over the past 12 months.
- The level of perceived risk exposure differs by size of organisation. A sense of high-risk or extremely high-risk exposure is perceived more acutely by tech pros at mid-size organisations (39%) as compared to their small business (23%) and enterprise (29%) counterparts.
- Security breaches are perceived to be one of the top external factors influencing an organisation's risk exposure, with 21% of tech pros surveyed citing external security threats - like cyberattacks - as the second biggest macro trend influencing their organisations' risk exposure.
- However, COVID-19 also had a critical impact on organisations' risk exposure, with tech pros flagging these top associated risk-inducing factors:
- Limited flexibility to quickly adapt operations to meet unforeseen needs (23%)
- Exponential growth of data as a result of new WFH needs (15%)
- Meanwhile, 30% of respondents ranked security and compliance as the most critical technologies to managing/mitigating risk within their organisations, followed by an even split across network infrastructure, DBaaS solutions, and artificial intelligence (AI)/machine learning (26%, respectively).
- Although external security threats are a leading risk factor, internal vulnerabilities as a result of remote/distributed environments cannot be overlooked in today's work landscape.
Surveyed tech pros are confident in their risk management and mitigation preparedness strategies although enterprise IT risk exists within their organisations.
- 72% of tech pros surveyed "agree" or "strongly agree" their IT organisations are prepared to manage, mitigate, and resolve risk factor-related issues due to the policies and/or procedures they already have in place.
- This finding is echoed by organisations' careful approach to technology adoption and implementations in response to shifting demands of COVID-19 distributed work environments: despite the accelerated timeline, 45% of respondents said standard or heightened risk management protocols were followed,while another 16% did not accelerate planning and stuck to their proven processes.
- That said, as detailed in a recent McKinsey report, tech pros and their IT organisations must be careful to avoid complacency in today's ever-evolving risk landscape and be sure to refresh and strengthen their approach to risk management for the future.
While tech pros prioritise investments in AI/machine learning, managed services, and cloud-hosted database platforms as core technologies to help manage risk, implementation is hampered by dwindling resources and access to personnel training.
- 7 in 10 tech pros surveyed "agreed" or "strongly agreed" technology is the best way for organisations to manage, mitigate, and resolve issues related to risk.
- IT teams prioritised investments in AI/machine learning (25%) and MSPs/MSSPs (19%), followed by DBaaS solutions (15%) to accommodate the unprecedented demands of COVID-19 and the shift to remote work.
- However, despite understanding technology can play a critical role in enterprise IT risk management, barriers to its adoption and implementation exist. The top three challenges to utilising technology to mitigate and/or manage risk within organisations reported by surveyed tech pros are:
- Lack of training for personnel (43%)
- Currently offered IT management solutions lack features/functionality to meet tech pro needs (42%)
- Poor management/lack of direction (40%)
- Implementation is further hampered by 29% of surveyed tech pros admitting that while some of their monitoring/management tools are integrated to enhance visibility across their IT environment(s)—whether on-premises, cloud-based, or hybrid—other tools are still siloed.
- Tech pros are overcoming these barriers by:
- Developing policies and processes (22%)
- Providing access to skills development training (22%)
Tech pros are capitalising on an opportunity to foster greater alignment and collaboration with senior leaders who will best position their organisations to manage and mitigate risks in the future.
- 49% of respondents are confident or extremely confident their IT organisations will continue to invest in risk management/mitigation technologies over the next three years.
- 49% perceive their organisation's senior leaders or decision makers to have a heightened awareness of risk exposure, believing it's not "if" but "when" they will be impacted by a risk factor. But while 22% of those respondents believe their organisation is prepared to mitigate and manage potential risk, 27% said their senior leaders have difficulty convincing other leaders of this reality, ultimately limiting resources to address risk.
- This reinforces how nearly one-fifth (19%) of tech pros surveyed state their IT organisations are improving alignment between IT business goals and corporate leadership in response to other tech adoption barriers like a lack of skilled IT staff triggered by cost-cutting, consolidation, or outdated skillsets, a lack of direction, and ineffective IT management solutions within the current toolset.
To explore and interact with the 2021 findings, please visit the SolarWinds IT Trends Index, a dynamic web experience presenting the study's findings by region and additional insights into the data, as well as charts, graphs, and socially shareable elements. This year's study features an interactive component where visitors to the web experience can see how they compare to the results.
The findings of this year's United Kingdom report are based on a survey fielded in March/April 2021, which yielded responses from 154 technology practitioners, managers, directors, and senior executives from public- and private-sector small, mid-size, and enterprise organisations. All regions studied in 2021, as reported on the SolarWinds IT Trends Index, were North America, Australia, Germany, Hong Kong, Japan, Singapore, and the United Kingdom, with 967 respondents across all geographies combined.
SolarWinds Outlines Secure by Design Principles for a More Secure Future
To address the industry-wide ramifications of the SUNBURST cyberattack and help strengthen its own security posture going forward, SolarWinds has introduced an initiative to become Secure by Design. Under this approach, SolarWinds is focused on further securing its internal environment, enhancing its product development environment, and ensuring the security and integrity of the products it delivers as it seeks to evolve into an industry-leading secure software development company.
The learnings resulting from the SUNBURST investigation have also presented an opportunity for SolarWinds to lead an industry-wide effort around transparency and collaboration, and for SolarWinds to develop a new model for secure software environments, development processes, and products. In partnership with former CISA leader Chris Krebs and former Facebook Chief Security Officer Alex Stamos (co-founders of the Krebs Stamos Group), SolarWinds is developing best practices to enhance the SolarWinds security posture and policies, while also serving as a guide for other organisations as they work to prevent future attacks. Customers, partners, and tech professionals can follow along with the SolarWinds Secure by Design blog content and join live webcasts hosted by members of the SolarWinds executive team, its Head Geeks™, customers, partners, and industry cybersecurity experts to learn more about Secure by Design best practices and learnings from the SUNBURST attack.
Additional Resources
Past SolarWinds IT Trends Reports
- SolarWinds IT Trends Report 2020: The Universal Language of IT
- SolarWinds IT Trends Report 2019: Skills for Tech Pros of Tomorrow
Connect with SolarWinds
#SWIcorporate
#SWIresearch
Forward-looking Statements
This press release contains "forward-looking" statements, which are subject to the safe harbor provisions of the Private Securities Litigation Reform Act of 1995, including statements regarding our database performance management portfolio's improve the quality of life for data professionals. These forward-looking statements are based on management's beliefs and assumptions and on information currently available to management. Forward-looking statements include all statements that are not historical facts and may be identified by terms such as "aim," "anticipate," "believe," "can," "could," "seek," "should," "feel," "expect," "will," "would," "plan," "intend," "estimate," "continue," or similar expressions and the negatives of those terms. Forward-looking statements involve known and unknown risks, uncertainties and other factors that may cause actual results, performance or achievements to be materially different from any future results, performance or achievements expressed or implied by the forward-looking statements. Factors that could cause or contribute to such differences include, but are not limited to, the risks and uncertainties described more fully in documents filed with or furnished to the Securities and Exchange Commission, including the risk factors discussed in our Annual Report on Form 10-K for the period ended December 31, 2020 filed on March 1, 2021 and our Quarterly Report on Form 10-Q for the period ended March 31, 2021 filed on May 10, 2021. All information provided in this release is as of the date hereof and SolarWinds undertakes no duty to update this information except as required by law.
About SolarWinds
SolarWinds (NYSE:SWI) is a leading provider of simple, powerful, and secure IT management software. Our solutions give organizations worldwide—regardless of type, size, or complexity—the power to accelerate business transformation in today's hybrid IT environments. We continuously engage with technology professionals—IT service and operations professionals, DevOps and SecOps professionals, and Database Administrators (DBAs) – to understand the challenges they face in maintaining high-performing and highly available IT infrastructures, applications, and environments. The insights we gain from them, in places like our THWACK community, allow us to address customers' needs now, and in the future. Our focus on the user and commitment to excellence in end-to-end hybrid IT management has established SolarWinds as a worldwide leader in solutions for observability, IT service management, application performance, and database management. Learn more today at www.solarwinds.com.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks of) their respective companies.
© 2021 SolarWinds Worldwide, LLC. All rights reserved.