Inability to prevent bad things from happening seen as the worst part of a security job

2023-02-03 04:00

"The findings indicate a sizable disconnect between market promises and team perceptions. As a result, teams lack the holistic visibility and context to zero in on adversary behaviour to identify the causes of major incidents and breaches. As a result, large-scale data breaches and multi-million-dollar remediation efforts are taking a toll on organizations' brands, customer retention, and act as a distraction to business momentum and budgets," said Steve Moore, Chief Security Strategist at Exabeam.

4% of U.S. security professionals report not using a SIEM platform, and of those respondents, 81% were confident.

One reason security teams struggle to prevent breaches is that adversaries are often already in the network, undetected.

"Business leaders are asking, 'Why do bad things keep happening?' The answer is security teams are overconfident," said Tyler Farrar, CISO, Exabeam.

"Despite significant spending on prevention tools, adversaries are still breaking into organizations using compromised credentials - which prevention solutions can't detect," said Sam Humphries, Head of Security Strategy, EMEA, Exabeam.

"And if these are the patterns we are seeing in the U.S., where the security market is ahead, it's likely worse in other regions such as EMEA and APAC. Fortunately, when organizations invest in detection tools with automated insights, behavioural analytics, and processes provided by platforms, security practitioners are better positioned to detect, investigate, and respond to adversaries."

News URL

https://www.helpnetsecurity.com/2023/02/03/security-teams-confidence/

#security