Wanted: Security Analytics Skills and Resources
-
Wanted: Security Analytics Skills and Resources
A new study points to a lack of skills and dedicated resources as major obstacles to detecting and mitigating security breaches and other threats. -
Skills Gap
59% of respondents cite a lack of skills and dedicated resources as the main obstacles to detecting and acting on cyber-security incidents and breaches. This is up from 30% in 2014. -
Lack of Training
41% are not satisfied with the availability of training and expertise needed to operate analytics and intelligence programs. This dropped from 48% in 2014. -
Speedier Remediation
In 2015, 67% were able to detect an attack in one week or less, versus only 50% in 2014. Yet 7% said their longest time to detection was more than 10 months, up from 5% in 2014. -
Leveraging Analytics for Visibility
83% said visibility into cyber-incidents improved with more effective intelligence programs that leverage analytics capabilities. -
Data Hurdles
43% of organizations are working to increase visibility by integrating data from external threat providers, and 31% are planning to do so in the future. -
Centralized Control Needed
35% cite a lack of centralized reporting and remediation controls as a barrier to identifying cyber-security incidents. -
Lack of Automation
Only 3% of organizations think their analytics and intelligence processes for pattern recognition are fully automated, down from 9% in 2014, and another 6% report a "highly automated" intelligence and analytics environment, down from nearly 16% in 2014. -
Baseline Blocks
26% of respondents can't understand and baseline "normal" cyber-security behavior. This dropped from 36% in 2014. -
Reusing Data
About 44% currently collect advanced threat intelligence information internally and save it for future detection activities; 43% use external third parties to collect advanced threat information for detection and response. -
Future Investments
43% said they plan to make future investments in threat intelligence products and services, up from 25% in 2014. Similarly, 34% plan to use big data and analytics products, up from 21% in 2014.
What Partners Need to Know About HP, Inc. 
MSPs Face Big Cybersecurity Talent Gap 
Why Tech Companies Are Eager to Invest in 5G 
The Problem With Partner Referral Programs 
Microsoft Taps Channel for Digital Business 
New Technologies Will Fuel Channel Opportunities 
Channel's Transition to the Cloud Requires More Time 
Microsoft's Cloud Channel Begins to Mature 
Defining MSPs' Goals, Challenges and Tools 
Why Metrics Matter to the Channel Here's a challenge for security providers. Although the availability of cyber-security tools and resources has grown substantially since 2014, a survey of 476 security and business executives reveals a lack of skills and dedicated resources as major obstacles to detecting and mitigating cyber-security incidents and breaches. The 2015 Analytics and Intelligence Survey, conducted by the SANS Institute, indicates a disconnect, said DomainTools, a sponsor of the survey: 43 percent of enterprises fully understand the importance of cyber-threat solutions but still rely on manual processes to protect their organizations. Additionally, only 9 percent of their analytics and intelligence processes used for detecting breaches are automated. The good news: Remediation time is improving although cyber-security attacks have increased, said DomainTools, a provider of Domain Name System and Internet OSINT-based threat intelligence and cyber-crime forensics products. Key survey findings underscore the need for security providers to deliver services around the implementation and use of analytics tools.