When asked on which business machines they believe their cyber security protections to be most effective, the surveyed IT professionals chose them in a similar order. Forty percent believe their cyber security is strongest on infrastructure servers and only 26 percent believe it's strongest on endpoint machines.
Sverdlove thinks that respondents over-evaluated the strength of cyber security on their Web and database servers. As validated by a recent report from Hewlett-Packard, a lot of companies are far more vulnerable on their servers than IT professionals realize, he said.
HP's 2011 Top Cybersecurity Risks Report, which was published on Wednesday, said that 86 percent of Web applications used by businesses are vulnerable to some type of injection attack that can be exploited by hackers to access internal databases.
More than half of IT professionals who participated in Bit9's survey believe that implementing best security practices and better security policies can have the biggest impact on the strength of an organization's cyber security. Only 15 percent of respondents felt that better technology will have a better impact and only 6 percent favored government regulation over other actions.