IT Brief Australia logo
Technology news for Australia's largest enterprises
Story image

IT and security team collaboration crucial to data security

By Catherine Knowles
Tue 21 Jun 2022

New research commissioned by Cohesity reveals that while most IT and security decision makers believe they should jointly share the responsibility for their organisations data security strategy, many of these teams are not collaborating as effectively as possible to address growing cyber threats.

The survey also shows that of those respondents who believe collaboration is weak between IT and security, nearly half of respondents believe their organisation is more exposed to cyber threats as a result, and the implications of that could have catastrophic consequences for businesses.

The research is based on an April 2022 survey conducted by Censuswide, of more than 500 IT decision makers and Security Operations (SecOps) professionals (split nearly 50/50 between the two groups) from businesses in Australia and New Zealand - all of whom have a role in the decision-making process for IT or security.

The survey was conducted as more than 2 in 3 respondents (69%) believe the threat of ransomware in their industry has increased over the last year, with nearly half of respondents (46%) saying their organisation has been the victim of a ransomware attack in the last six months.

The survey uncovered the following results globally:

Security should be a shared responsibility: Almost three quarters (74%) of respondents overall (80% of IT decision makers and 68% of SecOps) somewhat or strongly agree that IT and SecOps should share the responsibility for their organisations data security strategy.

However, effective collaboration between IT and security teams is frequently not happening: Over a third of SecOps respondents (36%) believe the collaboration is not strong with IT, with 11% of those respondents going so far as to call it weak. Among IT decision makers, almost a sixth of respondents (15%), believe the collaboration is not strong. In total, more that 1 in 4 (26%) respondents overall believe the collaboration between the two groups is not strong.

In many cases, even though the threat of cyber attacks has increased, the level of collaboration between IT and SecOps has remained stagnant or has declined: Almost 2 in 5 (39%) of respondents, overall, said collaboration between the two groups has remained the same even in light of increased cyber attacks. In fact, 1 in 6 (17%) respondents said collaboration has actually decreased. While only 6% of IT decision makers said collaboration has decreased, over a quarter (28%) of SecOps respondents believe that is the case, highlighting substantial disparity between the two groups.

The on-going tech talent shortage is making matters worse: When asked if the talent shortage is impacting the collaboration between IT / security teams, almost 3 in 4 (74%) of respondents (76% of IT decision makers and 72% of SecOps) said, yes, it is having an impact.

As a result of this lack of collaboration between IT and SecOps, many respondents believe their organisation is more exposed: Among the IT and SecOps respondents who believe the collaboration is weak between the two groups, more than half (52%) believe their organisation is either more exposed (35%), or much more exposed (16%) to cyber threats.

The consequences of that exposure could be devastating for businesses and for careers: When asked what would be their worst fear about a lack of collaboration between security and IT if an attack takes place, 44% of all respondents fear business disruption, 43% are concerned about a loss of data, 39% are worried customers will take their business elsewhere, 30% are worried about paying ransomware, 29% fear finger pointing will take place and their team will be blamed should any mistakes occur, and 29% fear people from both teams (IT and SecOps) will be fired.

Cohesity chief information security officer Brian Spanswick says, “This research pinpoints there is often a lack of collaboration between IT and security teams that we’re seeing across many organisations today.

"For too long, many security teams focused primarily on preventing cyber-attacks, while IT teams have focused on data protection, including backup and recovery. A complete data security strategy must bring these two worlds together but in many cases, they remain separate, and this lack of collaboration creates significant business risks and can put companies at the mercy of bad actors.”

To further drive this point home, when respondents were asked how their company prioritised data backup and protection as part of their organisation's security posture or response to a cyber attack, 53% of IT decision makers said it was a top priority and a critical capability while only 39% of SecOps respondents said the same.

Spanswick says, “If SecOps teams are not thinking about backup and recovery, and lack next-gen data management capabilities as part of an overall security strategy, that's a problem.

"IT and SecOps teams need to collaborate before an attack takes place looking holistically across the NIST Cyber Security Framework which includes five core capabilities: identify, protect, detect, respond, and recover. If they wait to collaborate until their data is hijacked, that's too late and the results could be catastrophic for businesses.”

Overall, 78% of all respondents (80% of IT decision makers and 76% of SecOps respondents) somewhat or strongly agree that if security and IT collaborated more closely, their organisation would be better prepared to recover from cyber threats including ransomware attacks.

Furthermore, when respondents were asked what would give their organisation greater confidence that they could recover business systems quickly in the event of a ransomware attack, 43% of all respondents (50% of IT decision makers and 37% of SecOps respondents) said greater communication and collaboration between IT and security is key.

Related stories
Top stories
Story image
Microsoft
Elders signs five-year agreement with Microsoft to boost innovation
Australian agribusiness Elders has signed a five-year agreement with Microsoft that looks to transform its customer experience, efficiency and sustainability outcomes.
Story image
Ransomware
Examining the future of ransomware threats with Vectra’s CTO
As customers' valuable data move to the cloud, so will ransomware. What is the current landscape and what do we need to know?
Story image
Apple
Your tools, your choice: why allow employees to choose their own devices?
Jamf Australia says giving your team the freedom to work with their digital device of choice could help to attract and retain top talent in a tight labour market.
Story image
AGVs
Bridgestone Australia uses Dematic's AGVs to optimise warehouse operations
Bridgestone Australia has deployed Dematic's Automated Guided Vehicle solution across its new Melbourne warehouse in Truganina.
Story image
Security Information and Event Management (SIEM)
LogRhythm updates SIEM Platform with latest innovations
LogRhythm has announced the launch of version 7.9 of the LogRhythm SIEM Platform and updates to LogRhythm NDR and LogRhythm UEBA.
Story image
Artificial Intelligence
Eight top DevSecOps trends to support IT innovation in 2022
The use of DevSecOps practices is growing, as it is increasingly seen as the best way to produce high-quality and secure code. So what are the current trends?
Story image
Ransomware
Businesses unprepared to defend against ransomware attacks
Ransomware attacks continue to impact organisations worldwide with high costs, but businesses are still largely unprepared.
Story image
Cybersecurity
Palo Alto Networks' cloud security platform receives IRAP assessment
"We provide help protect all forms of compute, cloud native services and access to data within public and private sectors."
Story image
Multi Cloud
Cloud is a tool, not a destination
For many years, “cloud” has been thought of as a destination which has led to a misguided strategy that sees an enterprise trying to shift all its applications to a single cloud provider – regardless of the specific needs and nuances of each individual workload.
Story image
Telstra
Ericsson and Ciena, Telstra enhance service capacity for Telstra's optical network
Ericsson, Telstra, and Ciena have announced new enhancements to Telstra's Next Generation Optical Network, which will increase the service capacity of Telstra's optical network to 400 GE (Gigabit per Second Ethernet).
Story image
Supply chain
Supply chains continue to be disrupted, enterprises embrace circular economy
“Businesses urgently need to find a solution that can help them to manage this disruption, and transition to a circular economy."
Story image
Tech job moves
Tech job moves - Bitdefender, Cohesity, Fortinet & MODIFI
We round up all job appointments from June 27-30, 2022, in one place to keep you updated with the latest from across the tech industries.
PwC
PwC's Consulting Business and PwC's Indigenous Consulting are proud to play an important role in helping Australian Indigenous Mentoring Experience build IMAGI-NATION, a free online university for marginalised communities around the world.
Link image
Story image
Document Management
NZ's FileInvite raises $10M in latest investment round
FileInvite has raised $10 million in Series A investment to fast-forward the extinction of email for requesting and collecting documents online.
Story image
Infrastructure
Video: 10 Minute IT Jams - An update from Paessler
Sebastian Krüger joins us today to discuss how unified infrastructure monitoring enables MSPs to seamlessly deliver services to their clients.
Story image
Artificial Intelligence
Accenture shares the benefits of supply chain visibility
It's clear that gaining better visibility into the supply chain will help organisations avoid excess costs, inefficiencies, and complexity to ultimately improve their bottom line.
Story image
ASI Solutions
Western Australia CUA panel picks ASI as preferred supplier
Western Australia's Common User Arrangement (CUA) panel has chosen ASI Solutions as a preferred supplier for device hardware.
Story image
Capital
Rubber Monkey gears up for Aussie market with latest capital raise
Rubber Monkey is seeking to raise up to NZ$2.5 million of new capital through online investment platform, Snowball Effect.
Story image
Sustainability
Honeywell named Frankston facility services provider
Honeywell has been named the joint facility services provider for Frankston Hospital’s AU$1.1 billion redevelopment.
Story image
Apple
Jamf introduces new content filtering solution for education providers
Jamf has announced the launch of Jamf Safe Internet, a new offering that looks to deliver a safe online experience to students while offering better management options for admins.
Story image
Compliance
SentinelOne integrates with Torq to empower security teams
"With Torq, security teams can extend the power of SentinelOne to systems across the organisation to benefit from a proactive security posture.”
Story image
Cybersecurity
Tech and data’s role in the changing face of compliance
Accenture's study found that 93% of respondents agree or strongly agree new technologies such as AI and cloud make compliance easier.
Supply chain
Discover the 4 critical priorities for wholesale distribution businesses in FY23. Are you worried about how supply chain issues may affect your business in 2023?
Link image
Story image
Payroll
How New South Wales state departments achieved cloud migration success
State departments in New South Wales are heading to the cloud to achieve better workflow solutions, and one company is paving the way for their success.
Story image
Accounting
Four factors to consider when choosing the right job accounting solution
Progressive job-based businesses can achieve success by strengthening their ability to quantify every cost attributable to the delivery of an outcome for a customer.
Story image
Metaverse
How the metaverse will change the future of the supply chain
The metaverse is set to significantly change the way we live and work, so what problems can it solve in supply chain management?
Story image
Media
Registrations for the W.Media Sydney Cloud and Datacenter Convention 2022 now open
Are you a C-Level executive looking to enhance your knowledge in the cloud and data center space in order to get the best results for your company?
Story image
Data Protection
Five signs your business is ready to move to the cloud
Many organisations are thinking about moving to the cloud. But what are the signs you are ready, and what are the reasons to move?
Digital Transformation
Discover the 5 signs your business is ready for a cloud-based ERP. Is your business being left behind as more of your competitors switch to the cloud?
Link image
PwC
WSLHD and PwC’s Consulting Business came together to solve through the challenges of COVID-19. A model of care was developed to the NSW Health Agency for Clinical Innovation guidelines with new technology platforms and an entirely new workforce.
Link image
Story image
Digital Fingerprint
Decline in counterfeit cherries after digital fingerprinting
Reid Fruits says there’s been a dramatic decline in counterfeit products for its cherries over the past three export seasons to Asia because of digital fingerprinting.
Story image
Enterprise Resource Planning / ERP
Five ways your ERP is letting you down and why it's time for a change
Wiise explains while moving to a new system may seem daunting, the truth is that legacy systems could be holding your business back.
Story image
SaaS
Ping Identity appoints Deloitte Australia as a partner
Ping Identity has appointed Deloitte Australia as a Consulting Technology Partner, uniting its offerings with the company's consulting services.
Project management
Discover the 4 crucial factors for choosing the right job-costing solution. Is your team struggling to cost jobs and keep projects running on budget?
Link image
Productivity
Discover the 5 ways your ERP may be letting you down. Is your current system outdated, difficult to manage, and costing you a fortune?
Link image
Story image
Collaboration
Enterprise service management: the importance of a one-stop shop
In an online world, employees and end-users want one place to go for all their questions and requests. Intranet technology and self-service portals are useful tools that help serve this purpose.
Story image
Samsung
Monitors are an excellent incentive for getting employees back
The pandemic has taught us that hybrid working is a lot easier than we would’ve thought, so how can the office be made to feel as comfortable as home? The answer could be staring you in the face right now.
Story image
Cybersecurity
Without trust, your security team is dead in the water
The rise of cyberattacks has increased the need for sound security that works across any type of business, but with any change, buy-in is essential. Airwallex explains why.
Story image
Artificial Intelligence
Dynatrace extends automatic release validation capabilities
Dynatrace has extended its platform release validation capabilities to improve user experience at every stage of the software development lifecycle.
Story image
Solutions
Progress launches latest version of network visibility solution
In Flowmon 12 network solution, Progress has expanded its support for public cloud provider flow log monitoring and launched new features.
Story image
Airwallex
How Airwallex helps businesses achieve globalisation success
As markets continue to shift, businesses need to be able to provide the same quality of service for customers regardless of where they are located around the world.
Story image
Wiise
Four things wholesale distributors need to consider for FY2023
In a post-pandemic world, there are many things for a distribution business to juggle. ERP solutions company Wiise narrows down what companies should focus on.
Story image
CSG
To win at 5G, telcos must tame their quoting chaos
The catalogs of CSP (communication service providers) market offerings are set to explode as new digital services emerge, powered by B2B2X business models.
Story image
API
Industry-first comprehensive risk-based API security enhances protection
Application Programming Interfaces (APIs) have become a crucial part of operating web and mobile application businesses and are causing significant economic growth in the digital sector.