Legacy thinking has security leaders and businesses investing in solutions.
Vectra AI, a leader in threat detection and response, today released a new report highlighting how today’s organisations are continuing to fail, tackling complex, modern cyber threats using outdated methods.
Vectra’s Security Leaders Research Report found that legacy thinking has security leaders and businesses investing in solutions that rely on outdated approaches, and the debate between detection versus prevention solutions is coming to a head.
The report, part of a global study by Sapio Research study, includes insights from 200 security decision makers working at organisations with 500+ employees across Australia and New Zealand.
Key findings include:
- The majority (85 per cent ANZ, 83 per cent global) agreed that traditional approaches don’t protect against modern threats, and only 40 per cent were confident their security tools would protect against sophisticated attacks
- More than half (58 per cent ANZ, 79 per cent global) reported they purchased a security solution that has failed on at least one occasion
- More than half (60 per cent ANZ, 64 per cent global) are worried their tools have missed something, and 57 per cent feel it’s possible or likely they’ve been breached while being unaware of it happening
- 86 per cent believe cybersecurity decisions made by the C-Suite are influenced by relationships with legacy vendors (83 per cent global), and 45 per cent (54 per cent global) said they are a decade behind on security discussions
- Of those who’ve read regulatory guidance, 93 per cent found it somewhat useful, and 80 per cent feel regulators have a strong enough understanding of the harsh realities that security teams face
Chris Fisher, Director of Security Engineering APJ, Vectra, commented: “New technology is coming but effectively protecting against threats requires a mindset shift. We need to say, what do we need to be doing differently? We need to look at detection and response, and the likes of machine learning to better understand attacker behaviour.”
Legacy thinking, ineffective investment, and lack of awareness among boards are ongoing challenges with 45 per cent of respondents saying the board is a decade behind when it comes to discussions on security.
The study found that security leaders are resigned to attackers being one step ahead with most respondents aware their security tools were failing, leading to concerns about missing threats until it’s too late.
