Almost half of UK public sector IT leaders say their cybersecurity tools fall short, thanks mainly to system complexity and budgetary constraints.
A survey of 100 public sector IT decision-makers from SolarWinds found that 44% reckoned their cybersecurity tools are only moderately effective at safeguarding sensitive data.
Nearly six-in-ten (58%) described their technology environments as ‘extremely’ or ‘very’ complex, with health and education sector respondents having the highest levels of IT complexity (70%) compared with just 45% for regional and central governments.
The problem lies in the increasing integration of cloud and hybrid IT infrastructures, the study noted. These environments are often vulnerable to risks such as misconfigurations, visibility gaps, and compliance failures.
Perhaps unsurprisingly, financial limitations were the biggest issue flagged by respondents, cited by 23% as the top barrier to strengthening cybersecurity.
However, human factors were also a big concern, with 56% citing careless or untrained insiders as the biggest security threat. Respondents also cited lack of training, poor collaboration with other teams, and a lack of top-level leadership and standards as significant barriers.
“These findings reflect a public sector under mounting pressure to address rising cyberthreats while navigating regulatory and fiscal constraints”, said Richard Giblin, head of public sector and defence at SolarWinds.
“Despite the clear need to modernize, complexity, cost and trust remain substantial barriers.”
Just over half (51%) of the respondents said they viewed observability as extremely or very important in terms of accelerating their organization’s digital transformation efforts, with enhanced security monitoring and faster incident response as the most frequently cited benefits.
Similarly, respondents revealed they are growing increasingly concerned about security and privacy, with 67% identifying this as a significant barrier.
Public sector could benefit from AI gains
SolarWinds’ survey highlighted a growing interest in observability and AI-powered solutions as ways to boost resilience against cyber threats, with 53% stating that enhancing system and process observability is a top priority for the future.
Almost a quarter said they are currently using AI to automate tasks related to IT operations and observability, while two-in-ten have adopted generative AI to enhance them. Among those who have not turned to the technology, most are either considering or planning to implement AI tools in the near future.
The government is optimistic about the possibilities for AI in public services, launching the AI Opportunities Action Plan in January this year.
This, it said, would allow the public sector to spend less time doing admin and more time delivering essential services.
Earlier this year, it started trialing a tool called Humphrey aimed at speeding up admin tasks in areas such as planning and social care, as well as in central government. Prime minister Keir Starmer has also pledged to send AI teams into every government department to identify areas of improvement.
Of more interest to the survey respondents than AI, though, was advancing digital transformation, particularly for those working in central and regional government.
“To make meaningful progress, public sector organisations must align across departments and integrate technologies such as observability and AI with well-defined governance, comprehensive training and a shared commitment to security at all levels”, Giblin added.
“Technology alone is insufficient – it must be part of a broader, strategic approach to cyber-resilience.”
Make sure to follow ITPro on Google News to keep tabs on all our latest news, analysis, and reviews.
MORE FROM ITPRO
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strainNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
A senior Microsoft exec says future Windows versions will offer more interactive, ‘multimodal’ experiencesNews With speculation over a Windows 12 reveal mounting, a senior company figure claims the new operating system will mark a step change for users
-
SonicWall appoints Michael Crean to lead new Managed Security Services DivisionNews The industry and channel veteran will spearhead the security vendor’s ongoing expansion into managed security services
-
AI tools are a game changer for enterprise productivity, but reliability issues are causing major headaches – ‘everyone’s using AI, but very few know how to keep it from falling over’News Enterprises are flocking to AI tools, but very few lack the appropriate infrastructure to drive adoption at scale
-
Everything you need to know about Sophos’ new partner programNews The vendor’s new channel initiative unifies the Sophos and Secureworks channel ecosystems to generate new partner opportunities
-
Upskilling staff is key to mitigating cyber attacks: Here's how a cybersecurity certification can helpISACA's CCOA certification grants access to practical learning opportunities so cybersecurity analysts can grow into their roles and keep their organizations safe
-
Proofpoint bolsters Microsoft 365 protection with Hornetsecurity acquisitionNews Proofpoint said the acquisition will “significantly enhance” its human-centric security capabilities
-
ReliaQuest targets international growth, agentic AI gains with $500 million investmentNews Cybersecurity firm ReliaQuest has raised $500 million as part of a funding round aimed at accelerating international growth and product development.
