In the recent Solarwinds MSP Cyber Preparedness Survey, Solarwinds surveyed 400 Small- to Medium-Sized Enterprises. This survey investigated the cyber security preparedness, experiences and failings of these organizations to better understand what we can be doing to better protect critical information.
The headlines of all the attacks this year are enough to scare people to invest more monies into security practices. The damage inflicted on organizations – large and small – is a clear indicator that cyber-attacks will stay steady in their escalation rate. The bad guys have always been a step ahead of the defenders and are pushing the advancement of protection strategies. With the threat landscape lingering at our doorstep, the question is how do you tackle this problem immediately? The answer is simple… It is a combination of strictly implementing your existing best security practices and properly securing your most critical information.
Many times, though, these needed security tactics aren’t taken seriously or truly understood. In the Cyber Preparedness Survey, they explored the 7 key areas for concern that is hindering organizations’ ability to effectively combat cyber attacks. Understanding these pitfalls can help organizations get their cyber security defenses up to par so they can battle the ever-evolving threat landscape. These pitfalls are as follows:
Many organizations struggle to consistently enforce security policies. While having a security policy in place, it is worthless if it is not properly enforced. The survey stated that only 32% of respondents could claim their security policies are applied and regularly audited. This means that 63% of respondents don’t apply or audit their security policies. Consider the amount of vulnerabilities that are allowing easy backdoors for threat actors to enter your environment The more inconsistent that you are with your security policies, the more holes for hackers to get in.
According to the survey, only 16% of respondents consider user security awareness training a priority. Think about how many end users you have at your organization and then the amount of critical data they have access to – this is how many risks you are currently facing. If users are negligent to current risks and vulnerabilities you have a greater risk of a data breach or cyber-attack.
It is scary to say that some organizations don’t even have the most typical cyber security technologies deployed in their environments. The survey stated that Web protection, email scanning, and anti-malware had each been rolled out by 50-61% of the respondents, but the remaining six (including SIEM, hardening workstations, firewall rules, patch management weekly and monthly, and network intrusion/host intrusion) had only been deployed by 33% at the most and 25% at the lowest.
Are you completing regular vulnerability scans with deep reporting to measure your security posture? According to the survey, only 29% of respondents could call their vulnerability reporting robust, with the majority, 51%, optimistically classifying it as adequate. Running vulnerability scans, reporting these issues, and acting on the findings can minimize a huge amount of risk for an organization and in return, lower your risk of data breaches.
So a breach got past your preventative actions, what do you do now? Many organizations experience an inability to adapt a new process and approach after a breach. It only seems logical to change your current and insufficient systems if you were compromised, but many don’t. According to the survey, 14% didn’t change anything at all. Of the breached, only 44% implemented new technology. It is paramount, as a progressing organization, that you don’t get stuck in your ways. Your defense strategies must evolve as attack strategies get more sophisticated.
As applications are typically running in the cloud now, it is important that you are not staying stagnate with your application prevention and detection techniques. Of the nine techniques, only a minority of the respondents had implemented all of them. The most prevalent technique was full disk encryption on mobile and portable endpoints at 43%.
**source: Solarwinds MSP Cyber Preparedness Survey: https://www.solarwindsmsp.com/blog/solarwinds-msp-survey-companies-still-failing-security-basics
In this year’s survey, detection times have increased 40%; and response times have increased 44%. Last year, detection times had increased only by 28%; and response times had increased by 27%. This is a clear-cut indicator that response times are increasing due to sophistication in attack and ill-prepared IT departments. When it comes to data breaches, the quicker the response, the lower the cost and the lower the impact.
What is this survey showing us? That Enterprises and SMBs are unprepared when it comes to cyber security tactics. Our solution? A managed, 24/7/365 holistic security solution. When you combine preventative, detective, and incident response tactics you can achieve a multi-tiered defense approach.
Our 24/7/365 security solutions combine the three pillars of cyber security – preventative, detective, and incident response – into a fully managed service that is supported by trained engineers in our Operations Center. Streamlining the efficiency and speed of your security functions can maximize your defenses and minimize costs when dooms day approaches. For a holistic solution, combine our preventative services with our Unified Security Management service to fill skill gaps with in-depth security intelligence and a singular platform that delivers SIEM, Vulnerability Assessment, Behavioral Monitoring, Compliance Monitoring, Intrusion Prevention, and Incident Response. For more information, contact us today!
It’s time to finally say, Happy Holidays! While the holiday season is for spending time with your family, eating way too much, and spreading the holiday cheer, it also signifies that the year is coming to an end. And, we’ve all heard the cliché saying, new year new me, right? Well, as you might have … Continue reading “New Connections: An Introduction to Magna5”
In the recent Solarwinds MSP Cyber Preparedness Survey, Solarwinds surveyed 400 Small- to Medium-Sized Enterprises. This survey investigated the cyber security preparedness, experiences and failings of these organizations to better understand what we can be doing to better protect critical information. The headlines of all the attacks this year are enough to scare people to … Continue reading “7 Pitfalls That Are Hindering Your Cyber Security”
FOR IMMEDIATE RELEASE Contact: Anne Clarrissimeaux Communications Manager Magna5 firstname.lastname@example.org 214-552-0910 MAGNA5 ACQUIRES NETSERVE365 Fourth acquisition in 18 months strengthens PaaS, IaaS, UCaaS services portfolio with addition of award-winning network and server monitoring and management, cloud hosting and managed IT security services Pittsburgh (November 16, 2017) – Magna5, a portfolio company of NewSpring … Continue reading “Magna5 Acquires NetServe365”