A survey of 270 IT professionals at the Infosecurity Europe 2017 conference found that customer-facing web applications were viewed as presenting the most security risk. Over three-quarters of respondents had an incident response plan, while 41% saw a lack of skilled security personnel as the biggest challenge. The document provides details on risks, security programs, and attacks experienced by organizations according to the survey responses.