Half of IT security pros think their organizations are unlikely attack targets
According to a new study published by the Ponemon Institute and sponsored by behavioral analytics specialist Prelert, half of IT security practitioners in the US view their organization as an unlikely target for attack.
The report also reveals a lack of cyber-preparedness with 61 percent of respondents admitting a lack of confidence in their organization's ability to detect advanced threats.
When asked about the type of attacks that cause the greatest concern, the most common answer is advanced persistent threats (67 percent), followed by zero-day attacks (57 percent) and login attacks (37 percent).
Yet despite worrying about these threats respondents showed a lack of urgency in adopting changes to deal with them. Asked how their use of advanced threat detection technologies would change 12 months from now, 49 percent said their usage would either not change or decrease.
"This research reveals some major disconnects that IT professionals seem to have between perception and reality. While even circumstantial evidence points to the increasing volume and severity of cyberthreats, it's shocking to learn that half of security pros don’t even view themselves as a target," says Dr Larry Ponemon, chairman and founder of the Ponemon Institute. "We're also seeing discrepancies in the way teams are viewing and reacting to advanced persistent threats. Overall, they're not confident in their ability to detect advanced threats, but they’re not doing much about it. It's clear that new solutions are needed".
Only 36 percent of respondents say that they're using security analytics, but there's high recognition of its importance. 90 percent believe security analytics is either essential (19 percent), very important (45 percent) or important (26 percent) to their organization's ability to maintain strong security.
The importance of machine learning is recognized by 83 percent as part of a security policy. Spotting the difference between abnormal and normal behavior is said by 59 percent of respondents to be important to identifying suspicious artifacts that could verify potential intrusions. However, only 38 percent say their IT security team can do this.