A news report shows that 71 percent of security leaders say their teams need access to threat intelligence, security operations data, incident response data, and vulnerability data.
“With today’s evolving threats, security operations teams cannot succeed without the access to and a centralized view of the data from other cyber and IT applications within their environments,” says Anuj Goel, CEO of Cyware. “This research paints a picture for CISOs to better understand the technology and data fusion challenges preventing their SOCs from enabling true collective defense. These common hurdles should shine a spotlight on the need for organizations to break the silos by better unifying their security teams, processes and technologies to bolster defenses and more proactively defend their assets.”
Sharing cyber threat intelligence between their organizations’ security operations center (SOC), incident response and threat intelligence teams is limited according to 64 percent of respondents. Organizations also cite several data silos and data access issues that hamper their ability to achieve collective defense.
Top obstacles to unifying technologies include cross team collaboration (55 percent), data silos within security teams (47 percent), discovering and accessing data (45 percent) and functional silos within security (45 percent).
Difficulties unifying data access, security teams and security technologies lead to issues, including slow threat response (60 percent), avoidable data breaches (57 percent) and avoidable human error (53 percent).
In addition, there are financial impacts experienced because of a lack of security unification and automation, these include high mitigation costs and increased cybersecurity spend (51 percent), and fines and compliance issues (45 percent).