ServiceNow study: Many data breaches go unpunished
The new study by "ServiceNow"", which surveyed 300 Chief Information Security Officers (CISOs) worldwide, makes it clear that companies need new approaches to security in order to cope with the increasing number of threats and the associated costs.
Major security gaps were addressed in chapters of the ServiceNow study: Leading organizations are insufficiently responding to security threats to protect their data. 72 percent of Chief Information Officer (CISO) respondents from Germany said they do not address discovered data breaches.
Worldwide, the figure was as high as 80 percent. 72 percent also confirm that it is difficult to prioritize threats according to business criticality.
Critical distinctions
Time is money: 14 percent of CISOs in Germany (13 percent worldwide) report that security breaches have caused financial damage or image damage in the company in the last three years. Manual processes, lack of resources and personnel, and no way to prioritize threats prevent effective security measures.
As a result, many CISOs are expanding security task automation to strengthen threat response and mitigation.
"CISOs in Germany are increasingly investing more in data breach prevention and detection, but our study shows that the focus should be on response measures," says Georg Goller, Area Vice President Germany, ServiceNow. "Automation and orchestration of security measures is what CISOs are missing to significantly increase the efficiency of their security solutions."
Other study findings:
- Only 20 percent rate the security measures in their company as highly effective (19 percent worldwide).
- Only 38 percent of CISOs in Germany and worldwide believe that their customer data protection solutions are highly efficient, and customers suffer the most as a result.
- 20 percent of German CISOs say that manual processes prevent the detection and defense against security threats. 18 percent believe that lack of resources is affecting security measures.
- Only 8 percent of CISOs in Germany believe that their employees lack the necessary skills to successfully prioritize security threats (globally, the figure is 7 percent).
A small proportion, 11 percent worldwide and 6 percent in Germany, who are described as "security response leaders" differ from the other companies in this respect,
- Automate more security tasks, including more advanced tasks such as trend reporting.
- Prioritize responses to security alerts by business criticality.
- Cooperate more with IT and other departments.
You can find more information on the ServiceNow study at this Link
