Lieberman Research Group -...

Unisys Security IndexTM: US April 18, 2013 Lieberman Research Group

2

Contents

Unisys on Security ................................................................................................................................................ 3

Executive Summary .............................................................................................................................................. 4

Detailed Findings .................................................................................................................................................. 5

Unisys Outlook .................................................................................................................................................... 12

Polling Methodology ........................................................................................................................................... 15

About Lieberman Research Group ..................................................................................................................... 16

About Unisys ....................................................................................................................................................... 17

3

Unisys on Security

Unisys plays a prominent role in efforts to combat risk through the technology products and services it provides to the government and major industries in the U.S. Unisys commitment to public and financial safety and security are the reasons for the creation of this index to monitor progress in these areas.

The Unisys Security Index is the only regular snapshot of the nation’s sense of security. Launched in 2007 and conducted by leading marketing research company Lieberman Research Group, the Unisys Security Index provides a regular, statistically robust measure of concerns about eight areas of security:

Organizations and governments today confront potential security threats that didn’t exist a generation ago. The community’s sense of security is a critical determinant of public confidence in how governments and private organizations respond. Security threats are global and can impact any individual. The Unisys approach to security goes beyond bits and bytes, recognizing that the most effective solutions are going to be those formed through collaboration across interests. See also www.unisyssecurityindex.com

For more information on Unisys security offerings, visit: www.unisys.com/security

National Security

Financial Security

Internet Security

Personal Security

Unisys Security Index

The U.S.’s national security in relation to war or terrorism

A serious health epidemic occurring in the U.S.

Other people obtaining and using your credit or debit card details

Your ability to meet your essential financial obligations, such as your mortgage, other loan, credit card or bill payments

Computer security in relation to viruses or unsolicited emails

The security of shopping or banking online

Unauthorized access to or misuse of your personal information

Your overall personal safety over the next 6 months

4

Executive Summary

The Unisys Security Index for the US stands at 120, a moderate level of concern. The largest contributor is concern about financial security, driven by worry about bankcard security.

The Index has dropped significantly from its 2012 value of 131 and represents the lowest level of concern since the benchmark survey was inaugurated in 2007.

INDIVIDUAL THREATS MOST WORRISOME IN US

Top 3 concerns: identity theft, bankcard fraud and national security in relation to war or terrorism

110

118

121

129

50 100 150 200

Internet Security

National Security

Personal Security

Financial Security

Unisys SecurityIndex: 120

Not very concerned Moderately concerned Seriously concerned

151 151 145

147 147 147136

164

131120

50

100

150

200

2H'07 1H'08 2H'08 1H'09 2H'09 1H'10 2H'10 1H'11 1H'12 1H'13

Unisys Security Index Trend Since 2H 2007

5

Detailed Findings: Concern About NATIONAL Security Since 2011

Almost half (45%) of Americans are seriously concerned (i.e. “Extremely” or “Very concerned”) about national security in relation to war or terrorism. This is the third largest indication of concern, below bankcard fraud and identity theft.

The “seriously” concerned proportion has dropped significantly since the 2012 survey, from 50% to 45%. “Not concerned” is up to 22%.

INDIVIDUAL REATS MOST WORRISOME IN U

Over one quarter (29%) of Americans are seriously concerned (i.e. “Extremely” or “Very concerned”) about a serious health epidemic occurring in America.

The “seriously” concerned proportion has dropped significantly since the 2012 survey, from 37% to 29%. The “not” concerned proportion has increased significantly, to 40%.

33 3427

6

2228 29

1915

31 32

22

0

10

20

30

40

50

60

Extremely Concerned

Very Concerned Somewhat Concerned

Not Concerned

National security in the US

2011 2012 2013

23 26

38

1317 20

30 33

1118

30

40

0

10

20

30

40

50

60

Extremely Concerned


Not Concerned

Serious health epidemic in the US

2011 2012 2013

6

Detailed Findings: Concern About FINANCIAL Security Since 2011

Half (52%) of Americans are seriously concerned about other people obtaining and using their credit or debit card details – this, along with identity theft, is one of the two leading areas of concern.

The “extremely” concerned proportion has dropped significantly since the 2012 survey, from 29% to 24%. ”Somewhat concerned” has risen from 24% to 30%.


About one third (32%) of Americans are seriously concerned about their ability to meet essential financial obligations, such as their mortgage, other loan, credit card or bill payments.

The “extremely concerned” proportion has dropped from 20% to 13%.

36 3224

8

29 27 2419

24 28 30

18

0102030405060

Extremely Concerned


Not Concerned

Other people obtaining and using your credit or debit card details

2011 2012 2013

25 2428

232016

23

39

1319

24

44

0

10

20

30

40

50

60

Extremely Concerned


Not Concerned

Ability to meet essential financial obligations

2011 2012 2013

7

Detailed Findings: Concern About INTERNET Security Since 2011

Over one third (35%) of Americans are seriously concerned about computer security in relation to viruses or spam.

The “extremely” concerned proportion has dropped significantly since the 2012 survey, from 17% to 12%.


One third (33%) of Americans are seriously concerned about the security of shopping or banking online.

The “seriously concerned” proportion has dropped since the 2012 survey, from 39% to 33%.The “somewhat concerned” proportion is up significantly, to 29%.

2127

33

171722

2733

12

2431 33

0

10

20

30

40

50

60

Extremely Concerned


Not Concerned

Computer security in relation to viruses or unsolicited emails

2011 2012 2013

25 26 29

191623 24

34

12

2229

36

0

10

20

30

40

50

60

Extremely Concerned


Not Concerned

The security of shopping or banking Online

2011 2012 2013

8

Detailed Findings: Concern About PERSONAL Security Since 2011

Over half (54%) of Americans are seriously concerned about identity theft – along with bankcard fraud, this is the top area of concern.

The “seriously” concerned proportion has decreased significantly since the 2012 survey, from 59% to 54%. “Somewhat concerned” is up to 28%.

One quarter of Americans (24%) are seriously concerned about their own personal safety. Half (49%) are not concerned at all.

There has been a small drop in the “seriously concerned” proportion, from 28% to 24%.

The current Unisys Security Index value of 120 represents a significant decrease since its 2012 value of 131. In fact, this represents the lowest level of concern since the benchmark survey was inaugurated in 2007.

Decreases in all four of the underlying indices produce the 11-point drop in the Unisys Security Index: • National Security Index: 118 (18 point decrease) • Internet Security Index: 110 (-9) • Financial Security Index: 129 (-11) • Personal Security Index: 121 (-9)

34 36

23

7

2732

2317

21

3328

17

0

10

20

30

40

50

60

Extremely Concerned


Not Concerned

Unauthorized access to, or misuse of, your personal information

2011 2012 2013

15 15

36 34

13 1523

49

915

27

49

0102030405060

Extremely Concerned


Not Concerned

Overall personal safety over the next 6 months

2011 2012 2013

9

Detailed findings: Concern About NATIONAL Security in the Two 2013 Surveys

Almost half (45%) of Americans in the follow-up survey are seriously concerned (i.e. “Extremely” or “Very concerned”) about national security in relation to war or terrorism. By contrast, 25% say they are not concerned.

The “seriously” concerned proportion is the same in the two surveys (45%). Changes in proportions are not statistically significant. The index for the national security question is slightly lower in the follow-up survey (135 vs. 137 in the March survey).


Special US Survey Following Boston Marathon Bombings

The initial 2013 Unisys Security Index survey for the US took place March 15-17, 2013. After the violence at the Boston Marathon on April 15th, a follow-up survey was conducted between April 26th and April 28th to ascertain whether concern about US national security in relation to war or terrorism had increased.

The follow-up survey was conducted as follows:

x A single question from the initial survey was asked: “Thinking now about security-related issues, please tell me if you are personally concerned or not concerned about the US national security in relation to war or terrorism. Is that extremely concerned, very concerned or somewhat concerned?”

x Otherwise, the telephone omnibus methodology employed for the two surveys was identical. The sample size for the follow-up survey is 1,005.

Findings from the follow-up survey indicate that concern about US national security did not increase following the Boston Marathon bombings.

15

31 32

2217

28 2925

0

10

20

30

40

50

60

Extremely concerned Very concerned Somewhat concerned Not concerned

National Security in the US

March 2013 survey Follow-up survey

10

Supplemental Question: We hear a lot about data breaches in the media. For each of the following organizations that may store personal data about you, please tell me if you are personally concerned about a data breach by accidental loss, theft or deliberate hacking. High levels of concern about data breaches have become pervasive. Although media coverage of loss of data usually spotlights banks and government agencies, Americans do not confine their concern to these sectors. Clearly the time will come when Americans expect hospitals, telecoms, ISPs and other large organizations to adopt the same kind of safeguards that they currently expect from banks and governments.

Level of concern about data breaches involving...

Two thirds of Americans are at least somewhat concerned about data breaches hitting their banks and financial institutions. They are also likely to worry about breaches on the part of government or health organizations, where just under one third of Americans say they are “very concerned.”

11

Supplemental Question: Congress is debating new legislation to strengthen the country’s cybersecurity defenses. As part of that legislation, should the government require private businesses such as banks, utilities and healthcare organizations to share cybersecurity attack information with the government? Half of Americans expect the government to play an active role in cybersecurity – whether or not they worry about data breaches. Evidently, many Americans see this as a natural part of maintaining public security, even if they are not fearful about cybersecurity threats.

Percent saying private business should be required to share cybersecurity attack information

Americans are evenly split on the question of requiring private businesses to share cybersecurity attack information with the government. Just under half of all respondents (46%) agree that this should be required.

12

Unisys Outlook

Unisys Security Index Report – United States The results of Unisys’ Security Index 2013 indicate bankcard fraud, identity theft and national security are the top security concerns for Americans. The survey shows 52 percent of Americans are seriously concerned about other people obtaining or using their credit/debit card details. A majority of those surveyed (54 percent) are also extremely concerned about identity theft that could lead to unauthorized access or misuse of personal information.

Though the overall Unisys Security Index for the United States has dropped to 120 (down 11 points compared to a year ago), it still shows a considerable level of concern on matters of financial, internet and personal security. In today’s hyper-connected world, where people are wary of losing valuable data and assets to cybercrime, it is prudent for businesses to review and enhance existing security measures on a continuous basis to:

x Gain continued visibility into security gaps and remedial activities

x Shield against evolving cyber and physical threats

x Ensure business objectives are met within the enterprise’s security, compliance and governance framework

Survey highlights bankcard fraud and identity theft as the top 2 security concerns.

48 Percent of Americans Worry about Data Breaches at Financial Institutions, Government Agencies As part of the Unisys Security Index™, American respondents were also asked to rate their apprehension regarding data breaches caused by accidental loss, theft or deliberate hacking in organizations which host their personal data. The research revealed:

x 48 percent are “very concerned” about a data breach in at least one of the following – banking & financial institutions, government, health organizations, telecom providers & ISPs, airlines and hotels

x While 30 percent are seriously concerned about breaches in banks, government agencies or health organizations, the report reveals Americans are also “very concerned” about incidents of data loss occurring at telecom providers & ISPs, airlines and hotels

High levels of concern about data breaches have become pervasive and continue to persist despite continued efforts by governments and commercial organizations to secure consumers’ financial data. To up the ante, organizations will need to innovate and raise security standards to beat cyber criminals who exploit enterprise vulnerabilities with increasing frequency, sophistication and scale. Organizations will need to encrypt data-at-rest and data-in-motion, and conceal networks from unauthorized eyes to tackle mounting consumer concerns while ensuring compliance with PCI and other payment industry compliance mandates.

Americans do not confine their concern to banks and government agencies. They want hospitals, telecos, ISPs and other large organizations to adopt the same stringent security measures that they currently expect from banks and governments.

Concerns also extend to health organizations, telecom providers and ISPs, airlines, and hotels.

13

Some Young Americans Expect Government to Play an Active Role in Cybersecurity

Just under half want private businesses to share cybersecurity attack information with the government.

Americans do not agree regarding the government’s role in cybersecurity. Unisys’ Security Index reveals 46 percent of Americans want private businesses such as banks, utilities and healthcare organizations to share cybersecurity attack information with the government (but 48% do not). Some see this as a natural extension of maintaining public security; others do not like government intruding in the private sector. The research also shows that young adults (25-34) and college graduates are most likely to support such a requirement.

Government involvement can result in increased regulations, fines, fees, etc., which can put a burden on businesses. Rather than just hope that you have taken adequate precautions, it is wiser to take steps now to prevent new cyber-attacks before they occur.

14

Unisys Perspective on Security With the advent of cloud computing and growing connectivity among companies, institutions and individuals, security has never been a more urgent and visible issue. Countering cyber attacks has raised the security agenda for both the government and commercial organizations.

Today’s reality is one of a hostile IT ecosystem riddled with vulnerable mobile devices, poorly authenticated users, and multiple data and application security vulnerabilities. Protection in such an environment is no longer just about securing the IT network perimeter.

Organizations should:

x Develop an all-encompassing security strategy – A comprehensive security strategy that aligns security objectives and measures with business strategies and goals. Such an approach lowers overall costs — providing technologists, engineers, and security professionals with a roadmap to follow and guidance on critical operations.

x Establish a “security first” mentality – Maintain superior security monitoring, awareness & reporting capabilities within a holistic cybersecurity framework to protect enterprise data and networks from internal and external threats. A common operating picture and real-time visibility across all aspects of security operations will enable organizations to implement and conduct IT security that not only protects but also values information.

x Adopt a coordinated approach to sensitive data protection – This is essential to recognizing the reality of data volume that needs protection and establish automated ways to analyze and monitor large volumes of data.

x Manage identities and entitlements through an integrated approach – Centrally manage a user’s digital identity and entitlements to provide highest level of identity assurance and reduce critical employee errors with continuous messaging and policy implementation.

x Leverage built-in capabilities of next generation devices – Mobile devices like smartphones and tablets allow for advanced authentication via biometric techniques like voice, signature and facial recognition. Organizations can utilize such emerging technologies that have already paved their way into the enterprise and the consumers’ mind. The opportunity here is to grow in tandem with consumer preferences while ensuring highest levels of protection.

x Assess and reassess on a continual basis – Continuous monitoring and assessment should be an integral part of the overall enterprise security program. It is critical to assess risk by performing vulnerability scans periodically and scheduling audits to gain continued visibility into security gaps and remedial activities.

15

Polling Methodology

The U.S. Security Index is based on a telephone survey of 1,006 persons aged 18 and over, March 15-21, 2013. This 2013 survey follows the baseline Security Index survey of August 2007 and nine 2008-12 follow-up surveys. The U.S. survey has been conducted as follows:

x 1,006 completed interviews among nationally representative adults, 18+;

x Random digit dialing (RDD) sample of telephone households in the continental U.S.;

x Random selection of household respondent to ensure greater representation;

x The survey is conducted in English and representative of English-speaking households; and,

x The data from this study are weighted according to the most recent estimates published by the U.S. Census Bureau to ensure projectability of the data to U.S. adults.

x Percentage changes since the 1H-11 survey are reported if the differences are statistically significant at a 95% confidence level.

Percentages are based on the full sample of 1,006.

16

About Lieberman Research Group Lieberman Research Group is a top-ranked and nationally recognized market research organization serving the business-to-business and consumer markets. Founded in 1966, it is now a $30 million custom research company. Interviewing facilities in Manhattan and Brooklyn have the capability to conduct interviews in 20+ languages.

Lieberman Research is the only U.S. member of The Global Research Alliance – an international consortium of independent market research firms in over 20 countries that provides access to interviewing facilities internationally as well as local knowledge and input critical to successful international studies.

Through its research in the U.S. and worldwide, Lieberman Research provides custom research and information analysis to its clients on a wide range of issues including customer and employee satisfaction, loyalty, multicultural and ethnic marketing, new product development, public policy, advertising, public relations and many others.

Lieberman Research Group is a proud member of the Council of American Survey Research Organizations (CASRO). As one of over 150 CASRO member companies nationwide, we subscribe to the CASRO Code of Standards for Survey Research.

This code, intended to foster the highest standards of ethical conduct in the practice of survey research, protects our clients and helps ensure an environment in which the public, our source of information in most surveys, respects and cooperates with the opinion research process.

While non-members also may subscribe to the same high standards as CASRO members, membership in CASRO is an indication that our company takes seriously its obligation to conduct its business in accordance with the highest ethical standards.

www.casro.org

About Unisys

Unisys brings together services and technology into solutions that solve mission-critical problems for organizations around the world.

In the Services segment, we provide services to help our clients improve their competitiveness, security and cost efficiency. Our services include outsourcing, systems integration and consulting, infrastructure services and core maintenance.

In the Technology segment, we design and develop servers and related products to help clients reduce costs and improve the efficiency of their data center environments. As a pioneer in large-scale computing, Unisys offers deep experience and rich technological capabilities in transaction-intensive, mission-critical environments. We provide a range of data center, infrastructure management and cloud computing offerings to help clients virtualize and automate their data-center environments. Product offerings include enterprise-class servers, such as the ClearPath family of servers and the ES family of Intel-based servers, as well as operating system software and middleware.

To drive future growth, Unisys is focusing its resources and investments in four targeted market areas: security; data center transformation, including our server business; end user outsourcing; and applications modernization.

The primary vertical markets Unisys serves worldwide include the public sector (including the US federal government), financial services and other commercial markets including communications and transportation.

We market our products and services primarily through a direct sales force. In certain foreign countries, we market primarily through distributors. Complementing our direct sales force, we make use of a select group of alliance partners to market and complement our services and product portfolio.

For more information visit www.unisys.com

© 2013 Unisys Corporation. All rights reserved.

Unisys, the Unisys logo and ClearPath are registered trademarks of Unisys Corporation. All other brands and products referenced herein are acknowledged to be trademarks or registered trademarks of their respective holders.

Printed in the United States of America 04/13 13-0019

Lieberman Research Group -...

Documents

Transcript of Lieberman Research Group -...