28% of Security Incidents Are Targeted Attacks; Product Integration, Event Comprehension, and Insufficient Skills Are Key Challenges to Timely Incident Response
A new report, Tackling Attack Detection and Incident Response, from Enterprise Strategy Group (ESG), commissioned by Intel Security, examines organizations’ security strategies, cyber-attack environment, incident response challenges and needs.
According to the IT and security professionals surveyed, better detection tools, better analysis tools, and more training on how to deal with incident response issues are the top ways to improve the efficiency and effectiveness of the information security staff.
“Just as the medical profession must deliver heart-attack patients to the hospital within a ‘golden hour’ to maximize likelihood of survival, the security industry must work towards reducing the time it takes organizations to detect and deflect attacks, before damage is inflicted,” said Hamed Diab, Regional Director at Intel Security, MENA. “This requires that we ask and answer tough questions on what is failing us, and evolve our thinking around how we do security.”
The ESG believes that there is a hidden story within the Intel Security research that hints at best practices and lessons learned. This data strongly suggests that CISOs Create tightly-integrated enterprise security technology architecture, Anchor their cyber security strategy with strong analytics, moving from volume to value, Automate incident detection and response whenever possible, Commit to continuous cyber security education: