...Cyber Attacks = Growing Bigger / Faster
• Human Focus = Critical in Preventing / Remediating Attacks
Despite abundance of security products, breach response typically takes months.
~4 of 5 organizations don’t update their breach response plans to account for
changing threat landscape and corporate processes. With proper technology, threat
intelligence & expertise, detection to response times has been reduced by >90%.
• Security Skills = Biggest Gap in Enterprise Security Programs
Despite large investments in security technologies, lack of skilled experts continues
to result in breaches. At least 30% of organizations cite a ‘problematic shortage’ of
each of following: 1) cloud computing and server virtualization security skills; 2)
endpoint security skills; 3) network security skills; 4) data security skills; 5) security
analytics / forensic skills.
• Disclosures of Breaches = Coming from Outside Sources
In 69% of breaches, victim did not detect attack on own – they were notified by third
party (like the press, law enforcement, etc.). This is forcing victims to disclose
breaches outside their preferred terms / timing.
Source: FireEye M-Trends Report 2015, Ponemon Institute’s Second Annual Study on Data Breach Preparedness, Network World.