“Organisations now better prepared to predict and resist cyber attacks” states EY in Global Information Security Survey
Global organisations are now more confident than ever that they can predict and resist a sophisticated cyber attack, but at the same time they’re falling short in terms of investments and plans designed to recover from a breach in today’s expanding threat landscape. These are the key findings from a new study conducted by EY.
The annual Global Information Security Survey, entitled ‘Path to Cyber Resilience: Sense, Resist, React’, shows that 50% of those professionals surveyed said they could detect a sophisticated cyber attack – the highest level of confidence since 2013 – due to investments in cyber threat intelligence aimed at predicting what they can expect from an attack, continuous monitoring mechanisms, Security Operations Centres and active defence mechanisms. However, despite these investments, 86% of those surveyed believe their cyber security function doesn’t fully meet their organisation’s needs.
Paul van Kessel, EY’s global advisory cyber security leader, informed The Paper: “Organisations have come a long way in preparing for a cyber breach, but as fast as they improve, cyber attackers come up with new tricks. On that basis, businesses need to sharpen their senses and upgrade resistance to attacks. They also need to think beyond just protection and security and focus on ‘cyber resilience’. In other words, an organisation-wide response that helps them prepare for and fully address these inevitable cyber security incidents. In the event of an attack, they need to have a plan in place, be prepared to repair the damage quickly and make sure the organisation’s back on its feet. If not, then they put their customers, employees, vendors and, ultimately, their own future at risk.”