Research: 74% of Organizations Experience Security Incident

Vectra AI, a leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises, releases findings today of its latest Security Leaders Research Report. The global research study, which surveyed 1,800 global IT security decision-makers at companies with more than 1,000 employees, reveals that from February 2021 to February 2022, 74 percent of respondents experienced a significant security event within their organization that required an incident response effort.

This stat comes as cyber threats increase and security and IT teams face mounting expectations to keep their organizations protected from such threats. Ninety-two percent of survey respondents stated they had felt increased pressure to keep their organization safe from cyberattacks.

The report reveals the security industry fails to keep pace with evolving cyber crime tactics, techniques, and procedures (TTPs). Legacy ‘prevention-centric’ security strategies and solutions, which fail to comprehend the complexities of modern attacker behavior, remain prominent, leaving organizations open and exposed to a potential breach.

Key findings of the research include:

  • 83 percent believe traditional approaches do not protect against modern threats, and we need to change the game when it comes to dealing with attackers
  • 79 percent of security decision-makers have bought tools that have failed on at least one occasion – citing poor integration, failure to detect modern attacks, and lack of visibility as reasons
  • Nearly 3 out of 4 (72 percent) think they may have been breached and don’t know about it— 43 percent think that this is “likely”
  • 83 percent say the board’s security decisions are influenced by existing relationships with legacy security and IT vendors
  • 87 percent of respondents state recent high-profile attacks have meant that boards are starting to take proper notice of cybersecurity

In addition to the more than eight-in-ten (83 percent) of respondents that acknowledged legacy approaches don’t protect against modern threats, 71 percent think cyber-criminals are leapfrogging current tools and security innovation is years behind that of the hackers.

A further 71 percent feel security guidelines, policies and tools are failing to keep pace with threat actor TTPs. The ongoing cybersecurity skills shortage was cited as an obstacle to moving away from legacy security strategies with 50 percent stating they could use more security talent on their team.

To download Vectra’s Security Leaders Research Report, please click here.