Majority of the organisations in the country are not prepared for cybersecurity related incident response-system. IBM released its ‘Cyber Resilient Organisation 2019’ study on April 11. The report is based on the survey of 3,655 IT security professionals from all over the world. Even a recent Sophos EDR survey revealed that
76% Indian businesses witnessed cyberattacks in 2018.
Incident response plan
The report suggests that nearly 77% of respondents admitted that their organisation doesn’t have a cybersecurity response plan applied constantly across the enterprise. Although cybersecurity is a high priority, a very few organisations have an incident response plan in place.
Companies need to understand that resilience to respond and recover is equally important as defending against potential cyberattacks. Among the organisations that have an incident response plan, 54% do not test their plans.
Intelligence and threat sharing
The key to improving the cyber-resilience is sharing intelligence and threats. 53% of respondents have found out that intelligence and threat sharing are effective methods. Only 20% of respondents have identified the need for artificial intelligence (AI) as the most effective tool to combat cyber threats.
Another reason why most companies don’t have a cyber incident response plan in place is the availability of resources. 75% of respondents find it difficult to hire and retain skilled security personnels. Only 30% of respondents have reported that their team of cybersecurity experts is good enough to achieve the high level of cyber resilience.
Automation will aid cyber security resilience
Less than half of the organisations use automation technologies for cybersecurity resilience. Nearly 55% of organisations expect to adopt new-age automated solutions sometime next year.