39% of Cybersecurity Professionals Say Their Company is Not Ready for a Data Breach

Cybersecurity and IT executives in the U.S.A. conducted a survey, which revealed that 39% consider their organization as under prepared to deal with a data breach, even when the organization is at a high risk of experiencing a data breach. The Ponemon Institute conducted another survey, which showed that 76% of SMBs had experienced a data breach last year.

The most recent survey was ordered by Avertium, the cybersecurity consulting company, for the company’s Cybersecurity and Threat Preparedness report in 2019. There were 223 survey respondents in the U.S.A. belonging to companies having 50 or more workers.

When asked regarding the major problem areas they experienced with regards to cybersecurity, the following was the result:

  • the growing intricacy of cybersecurity tech stacks – ranked by 76% of respondents
  • the growing complexity of cyberattacks – ranked by 75% of cybersecurity professionals
  • third-party or partner vulnerabilities – ranked by 66% of survey participants
  • jobs became much more complicated because of vulnerabilities introduced digital transformation – ranked by 65% of respondents
  • the cost and intricacy of regulatory compliance – ranked by 65% of respondents

Phishing and malware attacks were types of cyberattacks that bring about the biggest concern. They were ranked by 81% and 67% of respondents, respectively, as a main area of concern.

There is an inclination for businesses to depend on fresh technology to detect and stop cyberattacks. Although these cybersecurity alternatives are definitely essential, a lot of attacks get around these technical settings and target personnel. This makes training a vital step for employees to make sure they are ready and knows how to detect phishing emails as well as other typical hazards.

To minimize the danger of phishing and malware attacks, here’s the list of what the company respondents said:

  • 93% said their companies have created a formal employee education project
  • 63% said their companies integrated cybersecurity training into the induction programs of their employees
  • 46% said their companies offer yearly security awareness training classes
  • 74% said they send out frequent communications through email about tips on detecting the most recent phishing scams
  • 58% said they perform routine phishing simulation exercises

Although technologies are available to automate a lot of cybersecurity tasks, a lot of processes are still done manually, which is pushing IT divisions to breaking point. Merely 36% of survey respondents said their companies had used new technologies like AI-based and machine learning-based cybersecurity solutions to reduce the stress on their security team.

52% said they are making plans to hire new competent cybersecurity employees in 2020 and, will increase investment in cybersecurity 36% in 2020, on average.

Elizabeth Hernandez

Elizabeth Hernandez is the editor of HIPAA News section of HIPAA Coach and an experienced journalist in the healthcare sector. She specializes in healthcare and HIPAA compliance, making her a go-to source for information on healthcare regulations. Her work focuses on the importance of patient privacy and secure information handling. Elizabeth also has a postgraduate degree in journalism. Follow on Twitter: You can follow Elizabeth on twitter at https://twitter.com/ElizabethHzone