Siloed security data hamper the ability to achieve collective defense
Cyware revealed a research detailing the challenges affecting modern security operations teams and the negative business impact of siloed security operations.
According to the study, conducted by Forrester Consulting, 71% of security leaders report their teams need access to threat intelligence, security operations data, incident response data, and vulnerability data, yet 65% of respondents find it very challenging to provide security teams with cohesive data access.
“With today’s evolving threats, security operations teams cannot succeed without the access to and a centralized view of the data from other cyber and IT applications within their environments,” said Anuj Goel, CEO, Cyware.
“This research paints a picture for CISOs to better understand the technology and data fusion challenges preventing their SOCs from enabling true collective defense. These common hurdles should shine a spotlight on the need for organizations to break the silos by better unifying their security teams, processes and technologies to bolster defenses and more proactively defend their assets.”
According to the study, the growth of dynamic attack surfaces requires that leaders evaluate their firms’ security approach and adapt it to a unified collective defense foundation in order to remain viable. Those who acknowledge the risks of not unifying will explore security tools and functions, such as SOAR technologies to support their efforts.
Siloed security data and data access issues
- 64% of respondents note that sharing cyber threat intelligence between their organizations’ security operations center (SOC), incident response and threat intelligence teams is limited. Organizations also cite several data silos and data access issues that hamper their ability to achieve collective defense.
- Top obstacles to unifying technologies include cross team collaboration (55%), data silos within security teams (47%), discovering and accessing data (45%) and functional silos within security (45%).
- Due to difficulties unifying data access, security teams and security technologies, firms report several consequences tied to hazardous defense issues, including slow threat response (60%), avoidable data breaches (57%) and avoidable human error (53%).
- In addition, there are financial impacts experienced because of a lack of security unification and automation, such as high mitigation costs and increased cybersecurity spend (51%) and fines and compliance issues (45%).