The rate at which major security breaches are occurring appears to have reached a cadence that now has many organizations, for better or worse, finally reviewing their overall approach to cybersecurity.
It appears there is a growing realization that the existing tools and processes that organizations have been relying on to defend themselves need an arguably long-overdue update. The issue of the day is not only have the attacks increased in volume and sophistication; the size of the attack surface that needs to be defended keeps expanding as well. More employees are now accessing both cloud and on-premises applications from home, while at the same time edge computing platforms that need to be secured are being deployed more frequently.
Each of these platforms generates a steady stream of security alerts that need to be analyzed. The trouble is each of those platforms generates a lot of false-positive alerts. The survey finds security teams are spending about 10 hours a week assessing false positive alerts. A total of 62% said threats could get missed due to the overwhelming volume of false positives. Nealy 70% noted low staff morale could result from alert fatigue due to the overwhelming volume of false-positive alerts. A full 80% noted that time could be applied to applying security patches and updates.
Even more (86%) are hopeful tools driven by data science and artificial intelligence (AI) will have a significant impact on preventing unknown threats and reducing false positives.
It’s fairly apparent to all involved that current approaches to cybersecurity are not working as well as everyone would like. A total of 83% agreed in some way that cybersecurity professionals deserve better from anti-virus and endpoint detection and response solutions.
There is, of course, no silver bullet when it comes to cybersecurity. However, the need for a serious review is at hand. New security technologies have emerged to address a wide range of emerging threats that range from run-of-the-mill ransomware attacks to distributed denial-of-service (DDoS) attacks that are now being coordinated across the globe. At the same time, the processes employed to build and deploy software are being modernized in a way the better ensures the integrity of applications. Rather than simply layering more tools and processes on top of an existing set of workflows, organizations would be well advised to revisit their entire approach to cybersecurity.
Naturally, this means getting more top executives involved in the security strategy and no matter how excruciating that conversation may prove to be, it should be clear it can be put off no longer. We can help you with those conversations and get your business in a safe place. Call us at 502.267.2552.