Cisco Annual Security Report Reveals Widening Gulf Between Perception and Reality of Cybersecurity Readiness - Seite 2
Defenders
Results from the Cisco® Security Capabilities Benchmark Study, which surveyed Chief Information Security Officers
(CISOs) and Security Operations (SecOps) executives at 1700 companies in nine countries* reveals a widening gap in defender perceptions of their likely security capabilities. Specifically, the
study indicates that 75% of CISOs see their security tools as very or extremely effective. However, less than 50% of respondents use standard tools such as patching and configuration to help
prevent security breaches and ensure that they are running the latest versions. Heartbleed was the landmark vulnerability last year, yet 56% of all installed OpenSSL versions are over four
years old. That is a strong indicator that security teams are not patching.
While many defenders believe their security processes are optimized -- and their security tools are effective -- in truth, their security readiness likely needs improvement.
The report findings conclude that it's time for corporate boards to take a role in setting security priorities and expectations. The Cisco "Security Manifesto," a formal set of security principles as a foundation to achieving security, can help corporate boards, security teams and users in an organization better understand and respond to the cybersecurity challenges of today's world. It can serve as a baseline for organizations as they strive to become more dynamic in their approach to security and more adaptive and innovative than adversaries. The principles are:
1. Security must support the business.
2. Security must work with existing architecture -- and be usable.
3. Security must be transparent and informative.
4. Security must enable visibility and appropriate action.
5. Security must be viewed as a "people problem."
For a complete copy of the Cisco Annual Security Research report go to www.cisco.com/go/asr2015
Lesen Sie auch
About the Report
The Cisco 2015 Annual Security Report is one of the preeminent security reports that examines the
latest threat intelligence gathered by Cisco security experts, providing industry insights, trends and key findings revealing cybersecurity trends for 2015. The report also highlights data results
from Cisco's Security Capabilities Benchmark Study which examines the security posture of enterprises and their perceptions of their preparedness to defend themselves against cyber
attacks. Geopolitical trends, global developments around data localization and the importance of making cybersecurity a boardroom topic are also discussed.