Over a third of those who work in the IT security industry (38 percent) fear that leaving the EU will make the UK more vulnerable to cyber attacks because they will no longer benefit from intelligence sharing with other EU states, according to new research conducted by Unified Security Management™ and crowd-sourced threat intelligence company, AlienVault®.
The research, which surveyed the attitudes of around 300 IT security professionals at the Infosecurity Europe conference, also found that over half of respondents (52 percent) believe that UK organisations will still have to comply with EU legislation in order to trade with Europe.
Furthermore, the vast majority (78 percent) of those surveyed do not believe that their jobs will be made any easier by Britain leaving the EU. In fact, a significant proportion (22 percent) actively support EU legislation around data protection and believe that it benefits them and their work.
Javvad Malik, security advocate at AlienVault, comments: “Rather than offering an escape from the EU’s red tape, most people believe that they will still have to negotiate their way through complex legislation such as GDPR when Britain leaves the EU. But what’s more, a significant proportion of those surveyed believe that being part of the EU actually benefits them and their work. This is especially true of the industry’s attitudes towards intelligence sharing between EU states. Cyber attackers pay no attention to geographical boundaries, transcending borders and jurisdictions to maximize malicious effect. The truth is that we can provide a stronger and more robust defense against emerging threats by working together and sharing information.”
Probably due to the need to still comply with EU laws, the majority of respondents (66 percent) thought that the customer data held by their organizations will not be affected by Britain leaving the EU. But a quarter of those surveyed (25 percent) worry that the corporate data held by their organizations will be less secure after a ‘Brexit’, and 22 percent felt the same about the customer data held by their organizations.
As Javvad Malik observes: “The GDPR is due to come into force in 2018 and has the potential to significantly alter the way businesses handle data. At over 200 pages long, the regulation is possibly the most wide-ranging piece of legislation ever passed. But many Infosec professionals seem to view the legislation in a positive light, believing that stipulations such as ‘data protection by design’ will make the data held by their organizations more secure.”