RSA 2022 Security Operations Efficiency Survey – What Did We Learn?

RSA 2022 Security Operations Efficiency Survey

Gurucul conducted a survey at the 2022 RSA Conference on the current security efficiencies within organizations. The survey was conducted to discover what the attendees felt were the biggest threats to their security operations. Over 180 attendees responded to the survey in person. What did we find out?

Security Teams Have Too Many Tools

By far, the biggest challenge in detecting new and emerging threats was organizations having too many tools to manage (43.09%) with an overwhelming number of unprioritized alerts coming in as the second reason (18.78%).

It seems that security teams nowadays do not lack the tools to be able to detect new and emerging threats (only 9.94% stated they lack effective tools). In fact, it is these tools that are making it increasingly difficult to effectively identify threats because of the number of them and their alerts are becoming overwhelming.

Although organizations may feel adding additional tools the security mix would create a more secure environment it actually reduces the effectiveness of a cybersecurity posture. Side note – Gurucul has a unified, modular Security Analytics and Operations Platform that combines core security operations center (SOC) solutions into a unified next-gen platform.

The Mean Time to Detect Threats is Still Too Long

A worrying 33.15% of respondents said it still takes them days and weeks to detect threats, with over 6% saying they are still unable to detect threats. With the tools available today, no organization should be in the position where they are unable to detect threats that could seriously affect their business. Being proactive in their approach to security is critical to helping stand-up against the volatile threat landscape.

Organizations Are Spending Hundreds of Thousands of Dollars Remediating Threats

33.15% of those surveyed admitted to having spent hundreds of thousands of dollars in trying to remediate threats. This demonstrates the extent that organizations are willing to go to protect themselves against malicious actors, while also hinting at the fact that many of the chosen solutions potentially don’t deliver the expected results.

15.47% even spend millions of dollars, while 11.60% stated that they are unable to remediate threats.

What’s Getting Better?

In an ironic twist, most respondents (34.81%) agreed that security tools have changed for the better over the past two years. So, we have too many tools, but they are getting better. I guess there’s something to be said for progress.

This could be down to the fact that many organizations had to pivot quickly during the pandemic to enable business to continue as normal working practices dramatically changed. During the past two years, organizations had to quickly adopt new technologies to secure the remote workforce which in turn has created a better awareness of the threat landscape and how to protect themselves.

What’s Getting Worse?

Over a quarter of respondents agree that the threat landscape is what has changed for the worse over the past two years. Unsurprising, considering the constant evolution of threat actors and their tactics. On the contrary, the results also show that just under a quarter (23.20%) believe that people/talent are the factor that has deteriorated. This does reflect the significant skills gap that still persists within the industry, which is the result of a lack of diversity within recruitment.

Download The Report for More

How much money have companies wasted trying to remediate threats? What would most improve the effectiveness of the SOC? Download the full survey report for more details about what we learned.

Share this page:

Related Posts