One in Two Organizations Have Had a SharePoint Data Breach, According to New Study

Ponemon/Metalogix Research Shows Organizations Have Insufficient Control of Sensitive Data within SharePoint and other Collaboration and File Sharing Tools
May 04, 2017 | Washington DC

WASHINGTON, DC, May 4, 2017 – The Ponemon Institute and Metalogix, today released results of a report focused on how organizations are keeping sensitive or confidential data safe in collaboration and file sharing environments such as SharePoint, Dropbox, and file sync and share applications. The findings are based on a survey with responses from 1,403 respondents from the United States, United Kingdom, and Germany.

Handle with Care: Protecting Sensitive Data in Microsoft SharePoint, Collaboration Tools, and File Share Applications provides numerous key findings that information security professionals, data governance experts, and administrators of SharePoint and other collaboration applications can use to understand how their peers manage protection of sensitive content.
Several noteworthy findings are:

  • 49% had at least one confirmed data breach in the SharePoint environment in the past two years.
  • 79% don’t believe existing tools are “very effective” at protecting sensitive content from accidental exposure or a targeted breach.
  • 68% don’t have sufficient visibility into locations where sensitive data is located.
  • 59% say their organization doesn’t do a good job ensuring SharePoint users interact with confidential or sensitive data appropriately.

“SharePoint houses a vast amount of sensitive data, but organizations are not taking sufficient steps to keep it safe,” said Dr. Larry Ponemon, Chairman and Founder, Ponemon Institute. “The pressure to be productive is causing employees to put sensitive data at risk. Security and SharePoint professionals must understand where this content resides and how it is accessed and shared.”

Data Loss Prevention, Automation are Top Priorities
To address the security challenges of collaboration and file sharing tools, 63% of respondents believe having appropriate data loss prevention technologies (DLP) in place would be the most effective solution to prevent data breaches. This is considered more essential to security than having a larger budget or hiring more skilled employees.

Seventy-three percent say automated discovery of sensitive information and 70% say automated classification of sensitive information would improve their ability to secure data.

To be most effective, respondents believe DLP tools must integrate with SharePoint, become easier to configure, and reduce user frustration.
“Security SharePoint experts must come together to protect sensitive data,” said Steve Marsh, VP of Product Management at Metalogix. “With the right tools and policies in place, users are empowered to handle content responsibly and organizations can meet compliance and security responsibilities.”

About Ponemon Institute
The Ponemon Institute is dedicated to advancing responsible information and privacy management practices in business and government. To achieve this objective, the Institute conducts independent research, educates leaders from the private and public sectors, and verifies the privacy and data protection practices of organizations in a variety of industries.

About Metalogix
Metalogix is the market-leading provider of solutions to move, manage, and protect content within enterprise collaboration platforms. Over 20,000 clients trust Metalogix to optimize the availability, performance, and security of their content across the collaboration lifecycle.

The full report is available at https://www.metalogix.com/ponemon.

For more information, contact:
Angie Hohensee, Senior Director of Marketing at Metalogix
ahohensee@metalogix.com

About Metalogix

Metalogix is the market-leading provider of solutions to move, manage and protect content within enterprise collaboration platforms. Over 20,000 clients trust Metalogix to optimize the availability, performance, and security of their content across the collaboration lifecycle. For more information, please visit us at www.metalogix.com or call us at +1 202.609.9100. Metalogix is a registered trademark of Metalogix, Inc. All other trademarks used are the property of the respective trademark owners.

You Might Be Interested In: