Cyber Maturity Remains an Issue in Various Corporations According to Recent Research Findings
In a collaborative effort, Commvault and GigaOm have released the 2024 Cyber Recovery Readiness Report, focusing on strategies to bolster businesses against cyberattacks. The report highlights the significance of becoming cyber-mature, a status achieved by deploying at least four out of five identified resilience markers.
The research, based on a survey of 1,000 security and IT respondents across 11 countries, underscores the importance of an immutable copy of data stored in a known-clean dark site or secondary system. This practice serves as a critical foundation for enhancing a company's ability to recover from cyberattacks and reduce the number of breaches.
The report identifies five key capabilities, or resilience markers, as crucial for faster recovery from cyberattacks and fewer breaches. These markers, however, are not explicitly listed in the report.
Chris Ray, a GigaOm Cybersecurity Analyst, emphasizes that organizations can't cut corners to advance cyber preparedness. He stresses the need for defined runbooks, roles, and processes for incident response, as well as security tools that provide early warning about risks, including insider risks.
Cyber-mature organizations, those that have deployed at least four of the five resilience markers, recover 41% faster than organizations with zero or one marker. Moreover, these organizations experience fewer breaches compared to companies with less than four markers.
Surprisingly, less than 85% of respondents think about resiliency in layers, a mindset that needs to rapidly change for companies to be resilient against bad actors. This highlights the need for a more holistic approach to cybersecurity.
The report also sheds light on the confidence levels of organizations in their ability to recover from a breach. 54% of cyber-mature organizations are completely confident, compared to only 33% of less prepared organizations. Furthermore, 70% of cyber-mature organizations test their recovery plans quarterly, contrasting with 43% of organizations with zero or one resilience marker.
While the report does not disclose the specific company names of cyber-mature organizations, it does identify cyber-mature companies as those that have registered all five resilience markers.
In conclusion, the 2024 Cyber Recovery Readiness Report underscores the importance of cyber maturity for businesses. It emphasizes the need for a comprehensive approach to cybersecurity, with a focus on resilience markers, incident response preparedness, and regular testing of recovery plans.
