Managed File Transfer Mitigates Risk of Data Breaches & Non-Compliance Regulatory Mandates
Many IT leaders have so far failed to see the big picture and do not pay due attention to the need to govern the flow of data within, at, and beyond the edge of the enterprise.
File transfer may seem to be a rather innocuous process from the perspective of business users, but IT keeps worrying about where the associated data will reside in the end and who would be able to access this data.
Enterprise mobility and the emergence of cloud services have driven the uptake of ad hoc approaches to file transfer, which are well suited to the “working style” of business users.
An often-neglected aspect is the lack of data security, governance, and reporting capabilities, which render file transfer protocol (FTP) and other traditional approaches to file transfer obsolete, especially from the perspective of customer service-level agreements (SLAs) and stringent regulatory compliance mandates.
A recent Ovum primary research survey revealed some interesting and not-so-innocuous trends and figures:
- On average, 32% of business-critical processes involve file transfers and about 4% of FTP-based file transfers fail.
- The average total cost of a data loss/breach incident is $350 per breached record (or $3 million, on an overall basis).
- About a quarter of survey respondents revealed that their organization failed a security audit in the last 3 years.
- 17% indicated “no confidence” in passing a compliance audit with the existing file transfer solutions.
- There is little inclination to shift towards a “cloud-only” model for delivery of file transfer capabilities, with only 11% relying on software-as-a-service-based (SaaS-based) file transfer solutions for all of their file transfer needs.
These figures reveal the extent of vulnerability enterprises are exposed to when mission-critical data is knowingly or unknowingly shared with external parties without any appropriate data security and governance provisions.
Usage Split Between On-Premise and Saas-Based File Transfer Solutions
Which of the following is true with regards to the file transfer solutions currently being used in your organization?
Source: Ovum
It is clear that while the adoption of SaaS-based file transfer solutions continues to grow, most enterprises are not inclined to shift towards a “cloud-only” model for the delivery of file transfer capabilities. Nevertheless, 35% of respondent enterprises are using both on-premise and SaaS-based file transfer solutions.
Clearly, to mitigate data breaches, enterprises need a more robust approach to file transfer. Managed file transfer (MFT) fits the bill for such requirements and can effectively meet stringent regulatory compliance mandates.
One might argue that with 80% of the IT budget being used for “keeping the lights on,” it is rather difficult to secure funding for a comprehensive MFT solution. However, given the level of business risk associated with data breaches and non-compliance to regulatory mandates, IT can effectively build a strong business case that specifies how a shift to MFT will add business value.
A comprehensive MFT solution will provide off-the-shelf integration with common middleware platforms and security products and end-to-end visibility into, and monitoring of, file transfers. It will help ensure rapid onboarding of new customers and partners, as well as governing interactions with trading partners. Clearly, there are “more than enough” reasons to abandon “islands” of file transfer infrastructure and shift to a comprehensive MFT solution.
Many IT leaders have so far failed to see the big picture and do not pay due attention to the need to govern the flow of data within, at, and beyond the edge of the enterprise. What enterprises need is a central governance layer on top of the different components of the existing middleware stack, and this could be realized with a suitable combination of MFT, B2B integration, and API management solutions.
For IT leaders, there is a clear call for action to safeguard mission-critical data against unauthorized access, irrespective of the means used for transfer of this data, both within and outside the enterprise. Moreover, it is never too late to start bridging the gaps between enterprise integration infrastructure and data security and governance frameworks.
About the Author
Saurabh Sharma is a Senior Analyst with Ovum IT and is a member of Ovum’s Infrastructure Solutions team. His research covers integration infrastructure and enterprise integration strategies that span across application-to-application (A2A), B2B, and cloud service integration. He also focuses on other associated disciplines such as API management, integration and solution architectures, and communications integration.
Related: Real-Time Visibility & Analytics for UTi’s Global B2B “Center of Excellence”
Article Topics
Axway News & Resources
10 Best Practices for Thriving in the API World Forget About Cloud Infrastructure, It’s Now About Apps & API’s, Says Amazon’s CTO 2015 is Getting an Extra Second and that Could Be Problematic for The Internet Top Ten Security Considerations for the Internet of Things AS4: 4 Ways the New Web Services Interoperability Standard Can Benefit Your Digital Business IDC Marketscape: B2B Integration Gateway Software Axway Profile Moving Integration and Interactions Forward in the Era of Digital Business More AxwayLatest in Technology
Spotlight Startup: Cart.com is Reimagining Logistics Walmart and Swisslog Expand Partnership with New Texas Facility Taking Stock of Today’s Robotics Market and What the Future Holds Biden Gives Samsung $6.4 Billion For Texas Semiconductor Plants Apple Overtaken as World’s Largest Phone Seller Walmart Unleashes Autonomous Lift Trucks at Four High-Tech DCs Talking Supply Chain: Procurement and the AI revolution More Technology
