The enterprise is slowly improving its response to cybersecurity incidents, but in the same breath it is still investing in many tools that could actually reduce defense effectiveness.
On Tuesday, IBM released the results of a global survey conducted by the Ponman Institute and highlighted the responses of more than 3,400 security and IT workers worldwide. The study suggests that while investment and planning are in full swing, efficiency is not at the same risk as response efforts are hampered by complications due to fragmented toolsets.
The study, in IBM’s fifth annual Cyber Resilience Organization report, found that while companies were improving cybertack planning, detection and response, their ability to contain active threats decreased by 13%.
See also: IBM COVID-19 provides open source notebooks for data analysis
On average, enterprises deploy 45 cyber security related tools in their networks. Extensive use of a lot of equipment can contribute to disability not only detection, but also protection from active attack. Companies that have deployed more than 50 tools have 8% less threat detection capabilities and 7% less in their short defense capabilities, while others use fewer equipment sets than
It appears that the enterprise cybersecurity scenario has reached a new level of maturity, but 226% of respondents say their organization has now adopted formal, organization-wide Cyber Security Event Response Plans (CSIRP), an increase from 18% to 5% many years ago.
Overall, however, 4% of respondents said that while their cybersecurity plan stance may still be desirable, no plan, ad-hoc plan or inconsistency is still a thorn in the side of IT workers. Also, of those who have adopted a response plan, only a third have created a playbook to keep an eye on daily activities for normal activities.
Windows CNET: Twitter challenges millions of accounts every week to see if they are bots
“Because different types of attack attacks require individual response strategies, predefined playbooks provide companies with consistent and repetitive action plans to deal with the most common attacks,” the report notes.
According to IBM, a lack of planning and incident response testing could result in a বিল 1.2 million more damage bill than Cyberattack, otherwise the affected organization would have to suffer.
Costs can also be higher in the case of disruption, as only 39% of enterprise firms implementing CSIRP have experienced severe disruptive aggression in the past two years compared to 62 62% who have not implemented any of the plans.
TechRepublic: IoT devices may start shutting down after the security certificate expires
In light of the COVID-19 epidemic and the rapid changes that many of us have experienced in our workplaces, CSIRP setups need to be reviewed and, if necessary, adapted to adapt to work from the home environment. However, only %% of respondents review these plans quarterly and do not set a deadline for a review of 40%.
IBM added, “This information proves that many businesses are relying on old response plans that do not reflect the current threat and business landscape, as business activities change rapidly due to a growing remote workforce and new attack strategies are constantly being introduced.” IBM added.
Previous and related coverage
Have a tip? Communicate securely via WhatsApp Signal +447713 025 499, or key-base: Charlie at 0 over