New Cyber Resilience Study Highlights Lack of C-Suite Engagement and Concerns over Data Loss
A recent study conducted by IDC and commissioned by Commvault, a provider of data protection and cyber resilience solutions, has revealed some alarming insights into the state of cyber preparedness and resilience within organizations. Titled The Cyber-Resilient Organization: Maximum Preparedness with Bullet-Proof Recovery Survey, the report surveyed more than 500 security and IT operations leaders worldwide.
One of the key findings of the study is the lack of engagement from C-level executives in their company’s cyber preparedness initiatives. The research indicates that only one-third of CEOs/managing directors and less than a quarter of other senior leaders are heavily involved in these initiatives. In fact, a majority of senior leaders have no involvement at all in their company’s cyber cases. This lack of executive engagement can have serious implications for an organization’s ability to prioritize and effectively address cybersecurity threats.
Another concerning aspect highlighted by the study is the fear of data loss within the next 12 months due to increasingly sophisticated attacks. Sixty-one percent of respondents believe that data loss is likely to highly likely to occur. Interestingly, the study found that on-premises workloads are perceived to be more vulnerable than cloud workloads.
Data exfiltration attacks, where unauthorized data transfers occur, were found to be almost 50% more common than encryption attacks. Respondents ranked phishing as the most concerning threat, as it often leads to successful ransomware attacks. The study emphasizes the need for organizations to move beyond manual detection and reporting processes, which are prone to missing anomalies and successful attacks. Automation is seen as a potential solution to enhance detection and response capabilities, yet only 22% of organizations report being fully automated.
The report underscores the importance of comprehensive cyber resilience strategies that go beyond backup and recovery. Organizations need to adopt proactive defense measures, real-time threat intelligence, and robust risk management to effectively combat modern cyber threats. Furthermore, it is crucial for SecOps and ITOps teams to work closely together to ensure a holistic approach to cybersecurity.
Cyber attackers never rest and are constantly discovering ways to exploit vulnerabilities. It’s crucial that organizations integrate multiple layers of defense and prioritize cyber resilience, said Phil Goodwin, Research Vice President at IDC. The C-suite must ensure teams are focused on proactive defense, real-time threat intelligence, and robust risk management to pave the way for genuine cyber resilience, added Javier Dominguez, CISO at Commvault.
The study serves as a wake-up call for organizations to prioritize cyber preparedness and resilience. By actively involving senior leaders, aligning SecOps and ITOps teams, and embracing automation, organizations can enhance their ability to detect, respond to, and recover from cyber attacks. A comprehensive approach to cyber resilience is necessary to effectively protect valuable data and ensure business continuity in an increasingly threat-filled digital landscape.
For the full survey results, please visit [link].
