Responding to Cybersecurity Incidents Still a Major Challenge
March 21, 2018
Share this

A study conducted by Ponemon Institute and sponsored by IBM Resilient found that 77 percent of respondents admit they do not have a formal cyber security incident response plan (CSIRP) applied consistently across their organization.

Nearly half of the respondents reported that their incident response plan is either informal/ad hoc or completely non-existent.

Despite this lack of formal planning, 72 percent of organizations report feeling more Cyber Resilient today than they were last year. Highly resilient organizations (61 percent) attribute their confidence to their ability to hire skilled personnel — but organizations need both technology and people to be Cyber Resilient. In fact, 60 percent of respondents consider a lack of investment in AI and machine learning as the biggest barrier to Cyber Resilience.

This confidence may be misplaced, with the analysis revealing that 57 percent of respondents said the time to resolve an incident has increased, while 65 percent reported the severity of the attacks has increased. These areas represent some of the key factors impacting overall cyber resiliency. These problems are further compounded by just 31 percent of those surveyed having an adequate Cyber Resilience budget in place and difficulty retaining and hiring IT Security professionals (77 percent).

“Organizations may be feeling more Cyber Resilient today, and the biggest reason why was hiring skilled personnel,” said Ted Julian, VP of Product Management and Co-Founder, IBM Resilient. “Having the right staff in place is critical but arming them with the most modern tools to augment their work is equally as important. A response plan that orchestrates human intelligence with machine intelligence is the only way security teams are going to get ahead of the threat and improve overall Cyber Resilience.”

The lack of a consistent CSIRP is a persistent trend each year despite a key finding from IBM’s 2017 Cost of a Data Breach Study. The cost of a data breach was nearly $1 million lower on average when organizations were able to contain the breach in less than thirty days — highlighting the value and importance of having a strong CSIRP.

“A sharp focus in a few crucial areas can make a big difference when it comes to Cyber Resilience,” said Dr. Larry Ponemon. “Ensuring the security function is equipped with a proper incident response plan, staffing, and budget will lead to a stronger security posture and better overall Cyber Resilience.”

About the Study: Conducted by the Ponemon Institute and sponsored by IBM Resilient, The 2018 Cyber Resilient Organization is the third annual benchmark study on Cyber Resilience — an organization’s ability to maintain its core purpose and integrity in the face of cyberattacks. The global survey features insight from more than 2,800 security and IT professionals from around the world, including the United States, United Kingdom, France, Germany, Brazil, Asia-Pacific, Middle East, and Australia.

Share this

The Latest

August 10, 2020

In Episode 2, Jonah Kowall, CTO of Logz.io and former Gartner Research VP, joins the AI+ITOPS Podcast to discuss some of the hottest topics in ITOps today, including AIOps, Open Telemetry, Observability, and the challenges of Big Data in AI ...

August 07, 2020

Dennis Drogseth, VP at EMA, on the AI+ITOPS Podcast: "Digital transformation ... and the need for IT to enable digital business outcomes, is greater than ever, and all the tools including AIOps and automation ... are critical in making the difference ..."

August 06, 2020

Most organizations (75% of those surveyed) find the need to upgrade outdated infrastructure and invest in new technologies, according to the State of IT Infrastructure 2020 report from Wipro Limited ...

August 05, 2020

Application or network downtime is expensive, and given the growing numbers and types of high-availability and mission-critical applications, systems and networks — and our increasing reliance on them — ensuring consistent access to mission-critical applications is essential for ensuring customer loyalty and keeping employees productive. Businesses must recognize that applications availability depends on the network and implement a strategy to ensure network-aware application performance monitoring ...

August 04, 2020

Business leaders around the world are comfortable and optimistic about the broad scale shift toward remote work, according to the Riverbed Future of Work Global Survey 2020 that included 700 business decision makers, however findings also indicate the vast majority of organizations were not well prepared when the COVID-19 pandemic began ...

August 03, 2020

APMdigest and The Field CTO joined forces to launch the AI+ITOPS Podcast. The mission of the podcast is to discuss the struggles faced by ITOps — such as digital transformation and the need to keep IT services "always on" — and explore how AI/ML, AIOps, APM and other ITOps and DevOps technologies can help. Episode 1 features guest Dennis Drogseth, VP at Enterprise Management Associates (EMA) ...

July 30, 2020

One of the most frustrating experiences for website visitors is a slow, unresponsive website. Worst-case scenario, a web bounce causes prospects to permanently bounce from your company. In an effort to help companies improve web performance, Google launched the Web Vitals initiative in May and announced three new search engine ranking factors ...

July 29, 2020

Organizations have benefited from the use of modern applications to adapt and maintain agility and reliability during the COVID-19 pandemic, according to new research by VMware. The global study also reveals improved perceptions of alignment across app developers, IT and business decision makers as they collaborate to help their organizations operate amid the pandemic ...

July 28, 2020

According to The State of ITSM in the COVID-19 Pandemic, a survey by ManageEngine, 72% of IT professionals affirm ITSM's continued effectiveness even in remote work scenarios. However, only one in two organizations have a bring your own device (BYOD) policy to support continued productivity in new remote work environments ...

July 27, 2020

Many remote employees must access a corporate private network from home to continue business as usual. Organizations are turning to virtual private networks (VPN) as never before to keep remote workers connected to critical information and tools. To protect sensitive data and network bandwidth, however, companies must secure and control that network access such as by incorporating digital certificates into their cybersecurity strategy. Follow these five VPN best practices for secure remote worker access ...