Security Operations Struggle to Cope With Attacks
Over the last few years, cyber-attacks have steadily increased and are now far more than a value risk to the enterprise: They're an everyday threat. What's more, these attacks are becoming more dangerous and potentially more costly. The report "Investigation or Exasperation? The State of Security Operations" examines the current state of affairs and how organizations are coping with the barrage of attacks. The short answer: not so well. The study, conducted by IDC and sponsored by Splunk, tapped 600 global organizations, each with more than 500 employees in the United States, the United Kingdom, Germany, France, Sweden and the Netherlands. Among other things, the study found that many organizations are mired in "firefighting mode," and significant numbers of them admitted that they lack the time and resources to manage routine security operations and handle incident investigation adequately. The study also found that many organizations lack basic automation and analytics, and many intentionally keep information about security breaches from the corporate board and other key constituents. Here's a look at some of the study findings.