Only half of companies confident in security capabilities


By Dylan Bushell-Embling
Thursday, 21 January, 2016

Only half of companies confident in security capabilities

Only 54% of organisations worldwide are confident in their ability to defend against today’s sophisticated cyber attacks, a Cisco study shows.

The vendor’s annual security report shows that IT decision-makers overwhelmingly agree that regulators and investors will expect companies to manage cybersecurity risk exposure.

But just 59% of organisations report that their security infrastructure is up to date, a 10-percentage point decrease from the prior year.

In addition, only 54% of organisations are confident in their ability to verify that an attack has even occurred, and the same percentage are confident they are able to defend against attacks. Just 45% feel they are capable of scoping and containing attacks.

Part of the reason for the low confidence is a shortage of adequate information sharing and collaboration, the report suggests. During security incidents, only 21% of organisations notify business partners, 18% notify external authorities and 15% inform insurance companies.

In response to these issues and as part of efforts to address the security talent shortage, enterprises of all sides are increasingly turning to outsourcing services to balance their security portfolios, the report sates.

In the SMB segment, for example, outsourcing activity increased to 23% in 2015 from 14% in the prior year. Yet SMBs remain a potential weak link, with the number of SMBs using web security dropping by more than 10% over the same period.

Online attackers have shifted their activity to compromised servers to support their attacks. Common attack vectors include DNS — found to be a key capability in nearly 92% of known bad malware, and malicious browser extensions, which affect more than 85% of organisations.

The report also indicates that ransomware attacks alone generate $34 million per year per campaign, underlining the high cost of falling prey to cybercrime.

“Security is resiliency by design, privacy in mind and trust transparently seen,” Cisco Chief Security and Trust Officer John Stewart said.

“With IoT and digitisation taking hold in every business, technology capability must be built, bought and operated with each of these elements in mind. We cannot create more technical debt. Instead, we must meet the challenge head on today.”

Image courtesy of Sarah Joy under CC

Related Articles

Emergency onboarding: what to do before and after a data breach

Organisations that have an emergency onboarding plan are better positioned to have their business...

Savvy directors are demanding more points of proof when cyber incidents occur

Pre-agreement on what a post-incident forensics effort should produce — and testing it out...

Cyber-attack prevention is better than a cure

Corporate and political decision-makers need to invest in areas that do a better job of...

Content from other channels on our network

Breakfast event to explore connectivity for emergency response

Public sector innovation: how local councils are embracing hybrid work

GovTEAMS: boosting the efficiency of government and its suppliers

Report exposes unique cybersecurity threats in the public sector

Optimising the value of AI in the public sector

SmartConnect extends comms reach for VRA Rescue NSW

Breakfast event to explore connectivity for emergency response

High-frequency operation in a dynamic metasurface antenna

Teltronic and Crosscall agree to integrate their solutions

Global 5G connections reached 1.76 billion in 2023

Power Supplies and BLDC Motor Drivers from Mean Well in TME

WA funnels a further $500m into energy transition

$3.6 million in shared solar for ACT apartments

Low-orbit satellites help out electrical crews

Budget 2024: energy experts respond

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd