In a recent press release dated June 25, 2024, Optiv, a leading cyber advisory and solutions provider, unveiled its 2024 Threat and Risk Management Report. This report conducts a thorough analysis of how organizations are aligning their cybersecurity investments and governance strategies to combat the ever-evolving threat landscape.
According to a survey conducted by the independent Ponemon Institute, there has been a noteworthy 59% surge in cybersecurity budgets year over year. Furthermore, the survey found that organizations with over 5,000 employees allocated an average of $26 million towards cybersecurity investments in 2024, reflecting a significant financial commitment to tackling cyber threats.
The report sheds light on the alarming increase in data breaches and security incidents, with 61% of respondents reporting a data breach or cybersecurity issue in the past two years. Even more concerning, 55% of respondents experienced four or more security incidents within the same timeframe. These statistics emphasize the critical need for organizations to prioritize cybersecurity investments and strategies more effectively in order to safeguard their sensitive data and digital assets.
Jason Lewkowicz, the executive vice president and chief services officer at Optiv, emphasized the urgency for organizations to operate at a faster pace than cyber threat actors, considering the relentless nature of cyberattacks. With escalating security budgets, many organizations are recognizing the importance of making intelligent investments in process and governance assessments to ensure regulatory compliance. Establishing a cohesive and strategic approach towards managing security technology, processes, and personnel is pivotal for enhancing organizational risk management and resilience against cyber threats.
Key findings from the report include:
- Security Tool Overload: Despite investing in numerous cybersecurity technologies, 40% of respondents feel overwhelmed by the sheer volume of tools, which hampers their overall effectiveness.
- Top Investment Areas: The primary areas receiving cybersecurity budget allocations in 2024 are internal security assessments, identity and access management programs, and the procurement of additional cybersecurity tools.
- Lack of Formal Budgeting Practices: Surprisingly, only 36% of respondents have a structured approach to determining cybersecurity budgets, potentially leading to inefficiencies and missed opportunities to address critical security gaps.
- Rising SOAR Adoption: The adoption of security orchestration automation and response (SOAR) technology is on the rise, with 73% of respondents utilizing SOAR to automate incident response activities.
Another noteworthy trend highlighted in the report is the increasing emphasis on artificial intelligence (AI) and machine learning (ML) capabilities by cybersecurity organizations. These technologies are being leveraged to enhance threat detection, prevention, and process automation, enabling organizations to keep pace with cyber threat actors who are also leveraging AI and ML tools.
Moreover, the report delves deeper into best practices adopted by high-performing organizations and offers valuable insights for those seeking to fortify their cybersecurity defenses. It addresses challenges such as inconsistent cybersecurity incident response plans (CSIRPs), navigating cyber insurance and governance requirements, and improving communication of cybersecurity risks to senior management.
Dr. Larry Ponemon, chairman and founder of the Ponemon Institute, commended the proactive steps organizations are taking to mitigate risks in the face of evolving cyber threats. He highlighted the importance of strengthening security postures by reducing reliance on ineffective technology tools and investing in proven cybersecurity measures to minimize security incidents.
The findings presented in Optiv’s report are based on inputs from 650 IT and cybersecurity professionals, providing a comprehensive overview of the current cybersecurity landscape and evolving trends. For the latest news and updates from Optiv, interested parties can visit their newsroom at https://www.optiv.com/company/optiv-newsroom.