Cado Security Releases New Research Finding Nearly 90% of Organizations Suffer Damage Before Containing Security Incidents
Cado Security, provider of the first investigation and response automation platform, today announced the findings of new research examining why "Organizations Require a New Approach to Handle Investigation and Response in the Cloud." The report, which explores the critical role and challenges of incident response, reveals widespread shortcomings that leave organizations vulnerable to delays in resolving incidents and an inability to comply with and meet regulatory demands. The primary contributing factor is a lack of visibility and control over cloud environments.
"A robust incident response program ? especially one that extends to the next generation of technologies ? is critical to safeguarding organizations against emerging threats," said James Campbell, CEO & Co-Founder at Cado Security. "Yet, as revealed in our latest report, organizations still lack streamlined incident response strategies for cloud environments. The findings reinforce that organizations urgently need to adopt new approaches to swiftly investigate and respond ? not only to better address risk, but also to comply with the complex and ever-changing incident response reporting mandates across the globe."
Key findings, which Cado Security covers in detail within the report, include:
Traditional incident response approaches are complex and time-consuming, leading to a gap between event detection and investigation that results in damage. Nearly 90% of organizations suffer damage before containing and investigating incidents. Organizations report that 23% of cloud alerts remain uninvestigated due to various challenges and complexities.
A primary contributing factor to investigation delays was the lack ofvisibility and control over cloud environments, fueled by the following operational challenges: 82% of organizations report the need to use multiple platforms and tools to perform investigations in the cloud. Further, 34% of organizations report limited cybersecurity skills specific to cloud technologies.
As regulatory reporting requirements evolve, organizations are challenged with the increasing scope and staying abreast of new regulations.42% of organizations report that the main compliance challenge beyond cloud adoption is the lack of visibility into data, and 34% of respondents have been fined for not meeting regulatory requirements.
Looking Forward
Organizations are Enhancing Their Cloud Investigation Capabilities: As organizations migrate to the cloud, they must adopt new technologies to better secure against evolving threats. The report uncovered that organizations have slightly improved their ability to handle cloud investigations, with respondents reporting that 23% of cloud alerts are never investigated, compared to over 33% in 2021.
Organizations Have Budgeted for Cloud Forensics: The visibility challenges associated with investigation and response in the cloud have organizations increasingly turning to forensics tools. To this end, 83% have allocated a budget for cloud forensics, emphasizing the growing importance of forensics capabilities in managing cloud security.
Future Strategies for Cloud Investigation and Response: As organizations attempt to lean on existing tools, such as SOAR (Security Orchestration, Automation, and Response) platforms, to gain visibility into cloud-based threats, the report found that incident response automation is twice as effective when compared to SOAR for cloud investigations. While prioritizing the implementation of automation is essential, this automation must be customized explicitly for incident response rather than applying general automation solutions.
Methodology: The survey of over 300 security leaders and decision-makers working in organizations based in the United States and the United Kingdom was conducted in collaboration with TrendCandy. Survey participants had to use public clouds, such as AWS, Azure, and GCP, for business operations, hold a manager level and above, work within information security or cybersecurity, and be involved in cloud security.
Cado Security is the provider of the first investigation and response automation platform focused on revolutionizing incident response for the hybrid world. Cado significantly reduces response times by automating the capture, processing, and analysis of data residing in cloud, container, serverless, SaaS, and on-premises environments. Only Cado empowers security teams to add critical context to everyday security investigations on any system. Anywhere. Anytime. Backed by Eurazeo, Blossom Capital, and Ten Eleven Ventures, Cado Security has offices in the United States and United Kingdom. For more information, please visit www.cadosecurity.com or follow us on Twitter @cadosecurity.
Regula, a global developer of forensic devices and identity verification solutions, has released a significant update to its operating software, Regula Forensic Studio. This major revamp enhances the functionality of forensic devices, improves...
July 3, 2024 Amsterdam, the Netherlands ? Royal Philips , a global leader in health technology, today announced the appointment of Ms Ling Liu as the Chief Region Leader of Philips Greater China, effective immediately. Ms Liu is now a member of...
Nippon Express (Deutschland) GmbH (hereinafter "NX Germany"), a group company of NIPPON EXPRESS HOLDINGS, INC., transported 25 cherry blossom drawings by elementary school students in Gifu Prefecture, Japan, for display at the "Sakura in my eyes"...
Hansa Biopharma, "Hansa" , will publish its interim report for January-June 2024 on July 18, 2024. Interested parties may join the Company's quarterly conference call on the same date at 14:00 CEST/8:00 AM EST. The event will be hosted by Søren...
VidAU, a promising player in the AI video creation sector, has recently secured funding from an influential anonymous fund in the industry. This angel investment will further develop VidAU's intelligent algorithms and AI video models, enhancing the...
Elliptic Labs (OSE: ELABS), a global AI software company and the world leader in AI Virtual Smart Sensorstm currently deployed in over 500 million devices, has signed a new expansion contract with the Commercial segment of an existing PC customer....