A new report, Tackling Attack Detection and Incident Response, from Enterprise Strategy Group (ESG), commissioned by Intel Security, examines organizations’ security strategies, cyber-attack environment, incident response challenges and needs. The survey found that security professionals are inundated with security incidents, averaging 78 investigations per organization in the last year, with 28 per cent of those incidents involving targeted attacks – one of the most dangerous and potentially damaging forms of cyber-attacks. According to the IT and security professionals surveyed, better detection tools, better analysis tools, and more training on how to deal with incident response issues are the top ways to improve the efficiency and effectiveness of the information security staff.
“When it comes to incident detection and response, time has an ominous correlation to potential damage. The longer it takes an organization to identify, investigate, and respond to a cyber-attack, the more likely it is that their actions won’t be enough to preclude a costly breach of sensitive data. With this in mind, CISOs should remember that collecting and processing attack data is a means toward action — improving threat detection and response effectiveness and efficiency,” said Jon Oltsik, Senior Principal Analyst, ESG.
“Just as the medical profession must deliver heart-attack patients to the hospital within a ‘golden hour’ to maximize likelihood of survival, the security industry must work towards reducing the time it takes organizations to detect and deflect attacks, before damage is inflicted. This requires that we ask and answer tough questions on what is failing us, and evolve our thinking around how we do security,” said Chris Young, General Manager, Intel Security.See more