11:11 Systems Study Shows Security Concerns Worldwide

Infrastructure solutions provider 11:11 Systems today released the results of its recent study about IT leaders’ preparedness for responding to security issues. We spoke with Kaushik Ray, the provider’s chief experience officer, about what the results mean for channel partners and their clients.

New survey results show security attack rates remain high

11:11’s study of over 800 senior IT leaders reveals an ongoing struggle with the rising complexity of cyber recovery planning. From managing strategies to addressing staffing expertise, testing requirements, and access to clean room infrastructure, the challenges of responding to cyber incidents are putting businesses under significant strain.

82 percent of respondents have experienced at least one significant cyberattack, while 57 percent endured two or more cyberattacks within the past year.

“Cyber threats are evolving in both volume and sophistication, and the research highlights how unprepared many organizations still feel when it comes to recovery, especially as AI adds new layers of complexity,” said Justin Giardina, CTO of 11:11 Systems, in a statement. “Relying on outdated plans and hoping for the best is not the answer.”

“At 11:11, we believe that true cyber resilience requires a proactive, holistic approach: advanced recovery platforms with AI-driven detection, secure air-gapped clean room infrastructure, and tailored expertise that works alongside your team. By modernizing recovery strategies and integrating intelligent, adaptable solutions, businesses can ensure they’re not just surviving cyber incidents, they’re recovering fast, reducing risk, and emerging stronger every time,” he continued.

To Ray, the results were illuminating but ultimately unsurprising.

“I wouldn’t say we were surprised by the results. It affirmed what we’ve seen in the market,” Ray said. “Some of that feeling was positive, but some of it was also, oh, it’s unfortunate that is actually what’s happening.”

Difficulties in recovery and concerns about AI’s impact on security also found in study

Other key findings from 11:11’s report include:

• Cyber incident recovery remains difficult: Almost half of respondents (45 percent) believe that the complexity of planning required for cyber incident recovery is the biggest challenge.
• Overconfidence is common: Over 81 percent of IT leaders agreed that their company is overconfident in its cyber incident recovery abilities.
• IT leaders are concerned about AI: A notable 74 percent of respondents feel that integrating AI into their businesses could potentially increase their vulnerability to cyberattacks.
• Businesses are prioritizing cyber incident recovery in budget planning: Most respondents (96 percent) say they are very likely or somewhat likely to invest in cyber incident recovery in the next 12 months.
• Customization is key: Two-thirds (65 percent) of IT leaders agree that customizing recovery solutions for application-level recovery and cyber-related incidents is essential.

Ray called out the overconfidence issue in particular, noting that while it’s good to see some leaders becoming aware of the problems around their organization, it’s still not the same as fully addressing the risks inherent in not having recovery processes in place.

“I still firmly believe we are in an awareness phase from the industry’s point of view,” said Ray. “When we say cyber, most people automatically fill in ‘security’ after that, but they don’t think about recovery. There still aren’t many people truly thinking about what resiliency means for their business.”

11:11’s approach to resilience: what all partners and businesses can do to address their risk factor

Ray says the report illustrates a reality he often sees with customers: many leaders assume disaster recovery planning and cyber recovery planning are the same, and as a result, they don’t consider the nuances required to mitigate total risk.

The provider leverages what Ray calls the “Cyber Risk Quantification” to analyze and quantify the financial impact a lack of resilience can have on a business. Ray also notes that 11:11 aligns with NIST standards and builds its approach around eight core pillars.

Ray also stresses that while addressing this risk might seem complicated and overwhelming, it is actually fairly simple when business and IT executives work together to assess a compromised data risk management plan and fully consider all aspects of an attack.

To Ray, those aspects aren’t just about creating one backup; it’s about considering all avenues of compromise and how disruptive an attack would truly be to operations. 

“Businesses need a proper strategy around all of this. And strategy is not just buying the product,” said Ray. “It’s also the people involved, the processes, and the governance that all address building cyber resilience.”

This survey data is also accompanied by an ebook that dives deeper into the actions organizations can take to shore up their resiliency over the coming year. More information on both is available on 11:11 Systems’ website.