The more a company deploys cybersecurity tools, the less effective its security

Plus une entreprise déploie d Cybersecurity

Businesses are slowly improving their response to cybersecurity incidents, but at the same time, they continue to invest in too many tools that can actually reduce the effectiveness of information system security.

IBM has just released the results of a global survey, conducted by the Ponemon Institute, which was answered by more than 3,400 IT and IT security personnel worldwide. The study suggests that while investment and planning are on the rise, efficiency is not yet there. In question ? The complexity caused by the fragmentation of tools.

This research, IBM’s fifth annual Cyber ​​Resilient Organization Report, indicates that while organizations improve in planning, detecting and responding to cyber attacks, their ability to contain an active threat has decreased by 13%.

On average, businesses deploy 45 cybersecurity tools across their networks

On average, companies deploy 45 tools related to cybersecurity on their networks. Using too many tools can prevent detection of attacks, but also limit the ability to defend against them, the study says. Consequence: companies deploying more than 50 tools rank 8% below the threat detection capacity and 7% below the defense capacity of companies that use fewer tools.

It seems, however, that cybersecurity in business is reaching a new level of maturity, since 26% of respondents say that their organization has now adopted Cyber ​​Security Incident Response Plan (CSIRP) at the scale of the company, up from 18% five years ago.

In total, however, 74% of those questioned said that the IT security posture of their company still leaves something to be desired. In addition, of those who have adopted a response plan, only a third have created a guide to the types of common attacks to watch for in daily operations. “Since different kinds of attacks require unique response techniques, having predefined action plans allows organizations to have consistent and reproducible action plans for the most common attacks they are likely to attack.” be confronted, “notes the report.

Lack of planning and incident response testing can result in a large bill

According to IBM, a lack of planning and incident response testing can result in up to $ 1.2 million more in damages than the victimized business would have suffered from a cyber attack. The cost can also be high in terms of disruption, as only 39% of companies that applied for a CSIRP have experienced a very disruptive attack in the past two years – compared to 62% of those that have not implemented no form of plan.

In light of the Covid-19 pandemic and the rapid changes that many of us have experienced in our workplace, the configuration of the CSIRP should be reviewed and, if necessary, modified to adapt it. to the homework environment. However, only 7% of respondents review these plans quarterly, and 40% have no set deadline for reviews.



Rate article