Cybersecurity ops may never be the same after COVID-19, but that’s not all bad
- Alerts are increasing: Alerts increased as more employees began working from home, expanding the attack surface. Forty-two percent of respondents report that their alert volume is higher now than it was prior to the pandemic, and 51 percent said investigating suspicious activities has become more challenging in a remote environment.
- Insecure home networks, cloud adoption and phishing are the biggest threats: When asked to identify the top security risks facing their organization since transitioning to remote work, respondents named their employees’ insecure home networks as the top threat, followed by increased cloud adoption, with VPNs and mobile devices closely trailing. Additionally, 57 percent reported seeing more phishing threats upon the shift to remote work, a substantial increase to a delivery vehicle already heavily responsible for data breaches and ransomware attacks.
- Investments in automation and managed services are increasing: More than three-fourths (76 percent) of respondents said the pandemic has played a role in their actions to increase SecOps automation or is expected to in the near future. Thirty-seven percent have prepared new automated playbooks to respond to emerging, remote-specific threats, and 52 percent say their use of a managed security services provider (MSSP) has increased.
- Budgets and hiring are on the rise: Executive teams understand the importance of securing their newly remote workforces. Eighty percent of respondents reported their budgets either went unaffected by the shift to remote operations or were increased or are in the process of being increased. Hiring saw a boost, too. Notoriously skills-starved SecOps teams are no longer constrained by geography for new hires as one-third of respondents plan to or have already enhanced benefits to help retain staff.