Sophos - 7 Truths - CCS Media

Search here...

Results of an independent survey of 3,100 IT Managers commissioned by Sophos.

Read The Full Report

Truth #1:

It is now the norm to be a cyberattack victim.

68% of Organisations say they were hit by a cyberattack in the last year, twice on average.

Takeaway: Assume you will be hit by a cyberattack when planning your security strategies.

Truth #2:

IT teams lack visibility into attacker
dwell time.

Organisations don’t know how long nearly one in five (17%) was in their environment before being discovered. As a result, they don’t know the damage caused.

Takeaway: Worry about the threats you can track. Worry more about those you can’t.

Truth #3:

IT teams can’t plug their security gaps because they don’t know what they are.

One in five IT Managers are unaware how their most significant cyberattack entered their organisations. As a result, they are unable to protect these entry points.

Takeaway: To improve your long-term security, it’s essential to understand your weaknesses.

Truth #4:

Organisations lose 41 days each year investigating non-issues.

Organisations spend, on average, 48 days a year investigating potential security incidents, yet only 15% turn out to be actual infections.

Takeaway: Endpoint detection and response (EDR) technologies that identify, prioritise, and analyse security incidents save you time while improving security.

Truth #5:

Organisations struggle to detect and respond to threats due to lack of security expertise.

Four in five IT Managers wish they had a stronger team in place to properly detect, investigate, and respond to security incidents. Yet 70% struggle to recruit the cybersecurity skills they need.

Takeaway: Focus on technologies that enable you to add expertise without adding headcount.

Truth #6:

More than half of organisations don’t see the value of their EDR solutions.

While 93% of IT Managers want EDR in their security arsenal, 54% or organisations that have invested in EDR can’t get full value from it

Takeaway: Ensure you choose an EDR solution that you can use based on your current skills and resources.

Truth #7:

Once bitten, twice shy – Cyber victims lean the hard way.

Organisations that fell victims to a cyberattack in the last year investigate twice as many incidents as other organisations and spend 1/3 more time investigating potential security incidents.

Takeaway: Act now. Ensure your endpoint security strategy is up to date to minimise the risk of being hit.

Read The Full Report

This website uses cookies

This site uses cookies and other tracking technologies to assist with navigation and your ability to provide feedback, analyse your use of our site and services and assist with our promotional and marketing efforts. You can read more about this in our Privacy Policy.

More information I accept I decline

7 Uncomfortable Truths Of Endpoint Security

Results of an independent survey of 3,100 IT Managers commissioned by Sophos.

Truth #1:

It is now the norm to be a cyberattack victim.

68% of Organisations say they were hit by a cyberattack in the last year, twice on average.

Takeaway: Assume you will be hit by a cyberattack when planning your security strategies.

Truth #2:

IT teams lack visibility into attacker dwell time.

Organisations don’t know how long nearly one in five (17%) was in their environment before being discovered. As a result, they don’t know the damage caused.

Takeaway: Worry about the threats you can track. Worry more about those you can’t.

Truth #3:

IT teams can’t plug their security gaps because they don’t know what they are.

One in five IT Managers are unaware how their most significant cyberattack entered their organisations. As a result, they are unable to protect these entry points.

Takeaway: To improve your long-term security, it’s essential to understand your weaknesses.

Truth #4:

Organisations lose 41 days each year investigating non-issues.

Organisations spend, on average, 48 days a year investigating potential security incidents, yet only 15% turn out to be actual infections.

Takeaway: Endpoint detection and response (EDR) technologies that identify, prioritise, and analyse security incidents save you time while improving security.

Truth #5:

Organisations struggle to detect and respond to threats due to lack of security expertise.

Four in five IT Managers wish they had a stronger team in place to properly detect, investigate, and respond to security incidents. Yet 70% struggle to recruit the cybersecurity skills they need.

Takeaway: Focus on technologies that enable you to add expertise without adding headcount.

Truth #6:

More than half of organisations don’t see the value of their EDR solutions.

While 93% of IT Managers want EDR in their security arsenal, 54% or organisations that have invested in EDR can’t get full value from it

Takeaway: Ensure you choose an EDR solution that you can use based on your current skills and resources.

Truth #7:

Once bitten, twice shy – Cyber victims lean the hard way.

Organisations that fell victims to a cyberattack in the last year investigate twice as many incidents as other organisations and spend 1/3 more time investigating potential security incidents.

Takeaway: Act now. Ensure your endpoint security strategy is up to date to minimise the risk of being hit.

This website uses cookies

IT teams lack visibility into attacker
dwell time.