Many security teams are prioritizing prevention over detection, with disastrous results
A new report shows that when it comes to facility protection, the majority of businesses are prioritizing prevention over detection, investigation and response. As a result, however, a large number of companies are being hit by data breaches or other attacks, with the problems continually getting worse.
Researchers at Exabeam surveyed 500 IT security professionals, finding that about two-thirds of respondents (65%) prioritized prevention as their top priority. endpoint security (opens in a new tab) target.
For a third (33%) – detection is the highest priority.
Too late to the party
To make matters worse – businesses are actually acting on this mindset. Nearly three-quarters (71%) spend between 21% and 50% of their IT security budget on prevention, while 59% invest the same amount as they do on detection, investigation, and response .
According to Steve Moore, Exabeam’s Director of Security Strategy, the problem with this approach is that companies are focusing on prevention with crooks already inside the wall, rendering their efforts futile. .
“As you all know, the real question is not whether the attackers are in the network, but how many attackers are there, how long have they accessed and how far have they come, ‘ said Moore. “Teams need to socialize this question and treat it as an unspoken expectation to realign their investments and build upon that, placing the necessary emphasis on the alignment of their opponents. and incident response. Prevention has failed.”
When asked if they can definitely prevent attacks, most respondents answered positively. In fact, 97% said they feel confident in their tools and processes to prevent and identify intrusions and data breaches.
However, when asked if it was easy for them to tell their boss that their network wasn’t compromised at the time, only 62% answered yes, meaning more than a third doubted.
In other words, Exabeam said, security teams are overconfident and have data to back it up. Citing industry reports, the company claims 83% of organizations experienced multiple data breaches last year.