Only half of IT security teams optimally prepared for a security incident
Forty-two percent of companies surveyed in a recent global OTRS Group study say they are acceptably prepared for a security incident, only a bit more than half of them (56 percent) are optimally prepared for an incident, according to the survey (1). Two percent say they are not adequately prepared.
When asked whether responsibilities and tasks are clearly defined in the event of a security incident, the vast majority (93 percent) agreed while six percent believe this is not the case.
To map their security process, companies work with a mix of frameworks
According to the survey, 23 percent of organisations use the CERT.org framework for their security processes, 21 percent use ISO270035, 10 percent use NIST, four percent use KRITIS, and the majority (at 35 percent) use a mix of multiple frameworks.
Nearly one-third (26 percent) say that their incident management plan has helped optimise IT security and prevent security incidents. Twenty percent also say their existing plan has been helpful in documenting and structuring incidents. Nineteen percent find their incident management plan appropriate for figuring out why security incidents happen.
Seventy-seven percent use a security information and event management (SIEM) system as part of their security processes.
Professionals see significant advantages when using SOAR software / They also appreciate the benefits of vulnerability management
Seventy-one percent also use SOAR (Security Orchestration Automation Response) software. Of these, 24 percent say it makes it much easier to work with IT. Twenty-two percent primarily experience improved response times as a result, and 20 percent speed up problem resolution.
Eighty-six percent of companies have vulnerability management in place and 89 percent also use a corresponding tool for this purpose. Thirty-seven percent of these say the main reason is that they find vulnerabilities faster. Thirty-two percent say the tool better structures and documents vulnerabilities, while 31 percent says it helps them close security gaps faster.
Security gaps due to outdated software
Another result of the survey: 65 percent had security gaps because they had not upgraded to the latest software. Almost half (49 percent) tried to save money this way and regretted it.
In general, 15 percent of the IT security teams surveyed would like to see more attention paid to their topic within the company. Eighty-five percent are satisfied with how everything is currently handled.
"Current examples show that hacker attacks are increasing extremely - certainly also due to the pandemic and mobile working," says Jens Bothe, director global consulting and security expert at OTRS AG.
"The fact that only 56 percent of companies are optimally prepared for a security incident is alarming. The security gaps in the case of outdated software at 65 percent of companies should also give pause for thought."