Vectra Research: 74% of organizations experienced a significant security incident in the past year

Research reveals IT leaders’ scrutiny towards ‘prevention-centric’ security strategies and solutions

April 26, 2022

SAN JOSE, Calif., April 26, 2022 — Vectra AI, a leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises, today released the findings of its latest Security Leaders Research Report. The global research study, which surveyed 1,800 global IT security decision-makers at companies with over 1,000 employees, revealed that, from February 2021 to February 2022, 74 percent of respondents experienced a significant security event within their organization that required an incident response effort.  

Increased Pressure AmongIT Security Leaders 

This alarming statistic comes as cyber threats continue to increase and security and IT teams face mounting expectations to for keeping their organizations protected from such threats. 92% percent of the survey respondents stated that they had felt increased pressure to keep their organization safe from cyberattacks over the past year.

 

“Prevention-Centered” Security Strategies Can't Keep Pace

The report also unearths that the security industry is still failings to keep pace with evolving cybercrime tactics, techniques, and procedures (TTPs). Legacy ‘“prevention-centered” security strategies and solutions, which fail to comprehend address the complexities of modern attacker behavior, remain prominent, leaving organizations open and exposed to a potential breach.

Other key findings of the research include the following:

  • 83% believe that traditional approaches do not protect against modern threats, and that there is a need to change the game when it comes to dealing with attackers.
  • 79% of the security decision-makers have in the past purchased tools that have failed on at least one occasion – citing poor integration, failure to detect modern attacks, and a lack of visibility as reasons.
  • Nearly 3 out of 4 (72%) think that they may have been breached without realizing it – 43% believe that this is “likely.”
  • 83% say that the security decisions of their board of directors are influenced by existing relationships with legacy security and IT vendors.
  • 87% of respondents state that recent high-profile attacks have caused boards to begin to take proper notice of cybersecurity needs.

 “While organizations should certainly try to make life of an attacker as difficult as possible, prevention should not come at the expense of detection,” said Tim Wade, Deputy Chief Technology Officer at Vectra. “If a threat actor successfully gains access to a corporate device or network, there are still several stages in the attack chain they need to complete before reaching their target. In a high-risk game where the bad guys hold many winning cards, detection and response are the best options to minimize the impact of any breach as quickly as possible.”

In addition to the 83% of respondents who acknowledged that legacy approaches are not protecting against modern threats, 71% think that cyber-criminals are leapfrogging current tools, and that security innovation is years behind that of the hackers. 71% feel that security guidelines, policies, and tools are failing to keep pace with the TTPs of threat actors. The ongoing shortage of cybersecurity skills was also cited as an obstacle to moving away from legacy security strategies, with 50% stating that they could use more security talent on their team.

Security Breach: Just a Matter of Time

“Digital transformation and IT modernization initiatives are driving change at an ever-increasing pace. Yet, companies are not the only ones innovating. Cybercriminals are too,” Wade added. Organizations need security leaders who can speak the language of business risk and boards that are prepared to listen. But, most importantly, organizations need a technology strategy based on the understanding that “it’s not if but when” they will be breached.

About the Research

To download Vectra’s Security Leaders Research Report, please click here. 

Read the blog: New Data Suggests It’s Time to Change the Way Organizations Deal with Cyberattacks

 

About Vectra AI

Vectra® is a leader in threat detection and response for hybrid and multi-cloud enterprises. The Vectra platform uses AI to detect threats at speed across public cloud, identity, SaaS applications, and data centers. Only Vectra optimizes AI to detect attacker methods—the TTPs at the heart of all attacks—rather than simplistically alerting on "different". The resulting high-fidelity threat signal and clear context enables security teams to respond to threats sooner and to stop attacks in progress faster. Organizations worldwide rely on Vectra for cybersecurity resilience in the face of dangerous cyber threats and to prevent ransomware, supply chain compromise, identity takeovers, and other cyberattacks from impacting their businesses. For more information, visit vectra.ai. 

 

Media Contact

Allison Arvanitis

Lumina Communications for Vectra

Vectra@luminapr.com 

Most recent news releases
Vectra Extends Support for Amazon Security Lake
November 30, 2022
Read news release
Vectra and NEC Asia Pacific Announce Strategic Partnership
November 28, 2022
Read news release
Vectra research: Attacks using encryption are breaching 70% of organizations
November 24, 2022
Read news release

Learn more about the Vectra platform

Understand more about the Vectra platform and its approach to threat detection and response.

Discover the Vectra Platform