According to the 2019 Cybersecurity and Threat Preparedness Survey, 39% of respondents indicate their company is under-prepared to handle a data breach and 66% prefer negotiating with a used car salesperson over dealing with a breach.
Commissioned by Avertium, a provider of managed security and security consulting services, the online survey included responses from 223 cybersecurity and IT executives in the U.S. Key findings highlight attitudes toward new technologies, threat preparedness and investment strategies for 2020.
The Avertium Cybersecurity and Threat Preparedness Survey brings to light the love-hate relationship between security and IT professionals and technology. Most professionals believe technology will be pivotal in the future of cybersecurity with nearly two-thirds (65%) of respondents saying that Artificial Intelligence (AI) or Machine Learning (ML) will be able to solve more problems than humans. Despite this belief, only 36%have deployed these technologies in their environments. This relatively low adoption rate correlates with two of the top pain points cited by respondents: managing the increasing complexity of the cyber tech stack (76%) and the volume and sophistication of hacks (75%).
The survey findings also point to the continued criticality of the human element in identifying and addressing cyber threats. More than half (52%) report plans to expand the cybersecurity team at their respective companies in 2020.
Training and Education Is Critical
Despite the increase in types of attacks and sophistication of hackers, industry professionals’ greatest concerns continue to be phishing (81%) and malware (67%). To educate employees on preventing exposure to these types of threats, more than 90 percent of companies accounted for in the survey have at least one process in place, including incorporating it in new employee orientation (63%) and hosting annual training sessions (46%). To share common signs of phishing scams, three-quarters (74%) of respondents send email communication and nearly three-fifths (58%) conduct regular phishing exercises.
- The top two greatest pain points for cybersecurity professionals are the increasing complexity of cybersecurity tech stacks (76%) and the volume and sophistication of hacks (75%), with three others in a tie for third place: third-party or partner vulnerability (66%), increase in vulnerability due to digital transformation (65%) and the cost and complexity of achieving regulatory compliance (65%).
- 39% believe their company is underprepared to handle a cyber-breach
- On average, companies plan to increase investments by 36% in 2020
- 52% plan to increase their cybersecurity team in 2020
- 93% have formal training in place to educate employees on cyber threats
Phishing (78%) and Malware (62%) continue to be the most concerning attacks for companies, and will remain so in 2020 – Phishing (81%) and Malware (67%)
Independent databases of cybersecurity professionals were invited to participate in a web survey conducted by Research Corp., via Survey Monkey. The 2019 report data comprises 223 responses from organizations with more than 50 employees. The margin of error for the survey at the 95 percent confidence level is +/- 6.5%.