Survey results highlight which automation use cases are working, which need more focus, and how senior cybersecurity professionals are approaching the challenge of securing the extended enterprise
ASHBURN, Va., November 03, 2022–(BUSINESS WIRE)–ThreatQuotient™, a leading security operations platform innovator, today released the State of Cybersecurity Automation Adoption in 2022. Based on survey results from 750 senior cybersecurity professionals at companies in the U.K., U.S. and Australia from a range of industries, this global research report examines the drivers and challenges for implementing cybersecurity automation in today’s distributed enterprises. The report indicates that organizations have become more confident in automation itself compared to last year’s report, with over 84% of companies now having some level of trust in automation outcomes, up from the 59% who had confidence in outcomes last year.
The 2022 State of Cybersecurity Automation Adoption finds that organizations are working to automate various elements of their security strategy and are progressing through different levels of maturity. However, barriers remain. Technology was cited as the top blocker that is preventing organizations from applying cybersecurity automation (21%), in addition to a lack of skills (17%), and lack of management buy-in (17%) acting as a brake on adoption. Additionally, the report identifies a considerable disconnect and a lack of consensus over the drivers, barriers and challenges of automation among the various roles that influence cybersecurity strategy and tactical approach.
Key findings of the report include:
98% of respondents indicate their automation budget is increasing, although many are eating into other departmental or technology budgets to achieve this. A notable proportion (30%) are re-allocating unused headcount budget.
Organizations are most likely to already be automating threat intelligence management and incident response (26.5%), with phishing analysis (26%) and vulnerability management (25%) not far behind.
Surprisingly, only 18% of respondents are automating alert triage, despite this being a potential route to reducing the burden of manual review and prioritization.
Heads of IT Security Solutions/Architecture are having the most issues with management buy-in (37%) compared with the other job roles (19%).
When asked to rate their automation maturity from level 1, limited capability and no resources, to level 5, fully resourced and responsive set-up that integrates with other cybersecurity disciplines and adds business value, the majority of organizations (63%) rate themselves at level 2 or 3, showing that they have explored at least some use cases for cybersecurity automation, but that room for improvement remains.
In the 2021 survey, 37% reported already automating key processes, with 45% planning to do so in the coming year. Now that the additional 45% have started to implement automation, the 2022 report notes a change in the type of concerns reported. Last year, concerns were more conceptual, focusing around issues like trust in outcomes. Based on the 2022 responses, teams are now more focused on more practical issues, such as how best to apply automation to heterogeneous environments and legacy tools. It is here where solutions that simplify set-up of key use cases and use no-code to make automation accessible to a wider group of personnel can help overcome barriers and accelerate effective automation.
"ThreatQuotient commissioned this survey to gain a clearer picture of the state of IT security automation and adoption, and understand what is either accelerating or slowing automation in the U.K., U.S. and Australia. We are encouraged and intrigued by the 2022 results compared to the 2021 study," said Leon Ward, Vice President, Product Management, ThreatQuotient. "Cybersecurity automation acts as a foundation to support the protection of the fast-evolving security frontiers of tomorrow. While the research shows that organizations have certainly made progress over the last year when using automation to manage routine work and improve overall cybersecurity maturity, many teams still report challenges with automation. ThreatQuotient’s goal is to further the industry’s understanding of where cybersecurity automation brings the most benefit."
To download the full State of Cybersecurity Automation Adoption in 2022 report, including more detail on the survey questions, regional and industry snapshots, and recommendations for senior security professionals to follow if they are looking to automate their security processes, click here.
For more information about ThreatQuotient, please visit www.threatquotient.com.
Leading security operations platform innovator, ThreatQuotient, commissioned a survey, undertaken by independent research organization, Opinion Matters, in July 2022. 750 senior cybersecurity professionals in the U.K., U.S. and Australia from companies employing 2000+ people from a range of industries took part including: Central Government, Defense, Critical National Infrastructure, Retail, and Financial Services sectors, with 150 respondents from each.
ThreatQuotient improves security operations by fusing together disparate data sources, tools and teams to accelerate threat detection and response. ThreatQuotient’s data-driven security operations platform helps teams prioritize, automate and collaborate on security incidents; enables more focused decision making; and maximizes limited resources by integrating existing processes and technologies into a unified workspace. The result is reduced noise, clear priority threats, and the ability to automate processes with high fidelity data. ThreatQuotient’s industry leading data management, orchestration and automation capabilities support multiple use cases including incident response, threat hunting, spear phishing, alert triage and vulnerability prioritization, and can also serve as a threat intelligence platform. ThreatQuotient is headquartered in Northern Virginia with international operations based out of Europe, MENA and APAC. For more information, visit www.threatquotient.com.
View source version on businesswire.com: https://www.businesswire.com/news/home/20221103005197/en/
LaunchTech Communications for ThreatQuotient
Geopolitics such as Russia's invasion of Ukraine has led to more damaging and widespread cybersecurity attacks in the year to July, EU cybersecurity agency ENISA said in its annual report on Thursday. ENISA's study follows concerns about the role of state actors and the growing range of threats to governments, companies and essential sectors such as energy, transport, banking and digital infrastructure. The agency said geopolitical situations – in particular the Russian invasion of Ukraine – were game-changers during the period under review.
The president of global affairs at Meta Platforms argues that the Facebook parent’s recent business struggles are overblown.
Going by recent headlines and what the company says, one would assume Google is diving into crypto. The hiring of former PayPal exec Arnold Goldberg to run Google’s payments division in January was touted as “a broader strategy to team up with a wider range of financial services, including cryptocurrencies,” in a Bloomberg article and echoed in a lot of crypto press, including here. On the surface, it would seem Google is getting aggressive in its approach to crypto.
(Reuters) -Elon Musk has directed Twitter Inc's teams to find up to $1 billion in annual infrastructure cost savings, according to two sources familiar with the matter and an internal Slack message reviewed by Reuters, raising concerns that Twitter could go down during high-traffic events like the U.S. midterm elections. Twitter is currently losing about $3 million a day "with all spending and revenue considered," according to an internal document reviewed by Reuters. Twitter did not immediately respond to a request for comment.
A cybercriminal group has compromised a media content provider to deploy malware on the websites of hundreds of news outlets in the U.S., according to cybersecurity company Proofpoint. The threat actors, tracked by Proofpoint as “TA569,” compromised the media organization to spread SocGholish, a custom malware active since at least 2018. The media company in question is not named, but was notified and is said to be investigating.
Here is a FOX Business roundup of the top five changes the world's richest man has announced or already made in his first week as Twitter's new owner.
Meta, a Web2 giant, brings data permanency to Instagram with the help of Arweave's decentralized storage technology.
Developers suspect the attackers used malicious software to access the admin wallet's private keys.
It’s new technology, Spearmint, is an “allow list” designed to keep out speculators and bots who drive up gas fees.
Top crypto firms including Coinbase and Polygon are among the firms that have formed an industry body in India to promote dialogue between key stakeholders and drive awareness about web3, months after the largest local crypto advocacy group was disbanded. Members of the new industry body, named Bharat Web3 Association (BWA), include top local crypto exchanges, including CoinDCX, CoinSwitch Kuber and WazirX. “India’s Web 3.0 potential – in terms of talent, investment, and innovation – is revolutionary, and will surely place the nation as a global leader in this fast-emerging field,” said Nana Murugesan, vice president of International and Business Development at Coinbase, in a statement.
Instagram will soon have NFT creation and trading tools built in, but in-app purchases will be "subject to applicable app store fees."
India's crypto industry has formed a new advocacy body almost four months after the previous one was disbanded.
Alphabet is a holding company. Internet media giant Google is a wholly owned subsidiary. Google generates 99% of Alphabet revenue, of which more than 85% is from online ads. Google’s other revenue is from sales of apps and content on Google Play and YouTube, as well as cloud service fees and other licensing revenue. Sales of hardware such as Chromebooks, the Pixel smartphone, and smart home products, which include Nest and Google Home, also contribute to other revenue. Alphabet’s moonshot investments are in its other bets segment, where it bets on technology to enhance health (Verily), faster internet access to homes (Google Fiber), self-driving cars (Waymo), and more. Alphabet’s operating margin has been 25%-30%, with Google at 30% and other bets operating at a loss.
The idea behind Communities is to bring group chats together "under one umbrella with a structure that works for them.”
NEAR Foundation is establishing a Web3 hub in South Korea to expand its allegiance with blockchain projects in Korea and Asia.
Etsy reported its Q3 earnings after market close today, at the tail-end of a nightmare earnings season for tech.
Dycom is the IBD Stock of the Day amid a strong relative strength line amid market volatility as customers ramp up fiber-optic networks.
Semiconductor stocks make the world go ‘round. Many of today’s modern conveniences wouldn’t be possible without them. Yet, you wouldn’t be able to tell that by looking at the charts or valuations of some of the top names in the sector whose shares have been decimated in the current bear market. Of course, the flip side to this is that investors have a chance to pick up some seriously undervalued semiconductor stocks at excellent prices. While economic headwinds are weighing on demand for semicon
The old aerospace saying locally is that when Boeing sneezes, Wichita catches a cold. While Wichita-based Spirit AeroSystems Inc. has been on a path of diversification in recent years, expect the company’s third-quarter results to once again be heavily impacted by Boeing (NYSE: BA) when reported on Thursday. In broad terms, investment analysts are expecting an earnings loss of around $0.39 per share on sales of around $1.32 billion — both significant improvements year over year — as Spirit continues to rebound from a tumultuous two years in aerospace.