The study done by Cisco included recognizing top seven success factors responsible for the security resilience of a particular firm. These factors were classified on the basis of culture and environment and solution-based business security. The study was based on a survey accomplished with the co-operation of more than 4,700 participants, responding from 26 countries.
Resilience has emerged as an apex priority to companies, since at least 62 percent of the organizations surveyed reported having encountered a security event that negatively impacted business in the last two years. The most prominent types of security incidents include network or data breaches, network or system outages (51.1 percent), ransomware events (46.7 percent) and distributed denial of service attacks (46.4 percent).
The instances consequently resulted in severe repercussions that were significant for both the company involved and the ecosystem of businesses they interact with. The impacts significantly involved IT and communications interruption (62.6 percent), supply chain disruption (43 percent), impaired internal operations (41.4 percent) and lasting brand damage (39.7 percent).
With such high stakes, 96 percent of the executives involved in the report’s survey, unsurprisingly mentioned that security resilience is a priority to them. The study as well emphasized the key objectives of security resilience for security specialists and their teams, that is to evade any security incident, and mitigate losses when it takes place.
The Seven Success Factors of Security Resilience
The Cisco report this year additionally established a methodology in order to generate a security resilience score for the surveyed firms, identifying the seven success factors. Organizations with these factors were apparently amongst the top 90th percentile of the robust businesses. While organizations that did not comprise the same were in the bottom 10th percentile of the performers.
The study's findings supported the fact that security is in fact a human activity because leadership, corporate culture, and resource availability have a significant influence on resilience:
• Organizations reporting insignificant security support from the C-suite scored 39 percent lower than the ones with stronger executive support
• Organizations supporting a significantly better security culture scored 46 percent higher on the average than the one that did not.
• Businesses that keep additional internal employees and resources in hand to respond to incidents saw a 15% increase in resilient results.
Additionally, businesses as well needed to pay attention to minimizing the complexities faced while transitioning from an on-premises to a fully cloud-based environment.
Eventually, the implementation and maturity of these advanced solutions offer significant impacts over the resilient outcomes:
• Organizations reporting implementation of a mature zero trust model saw a 30 percent increase in resilience scores, compared to those that did not.
• Enhanced extended detection and response capabilities have resulted in a remarkable 45 percent increase for organizations that reported witnessing no detection and response solution.
• Converting networking and security to a mature, cloud-delivered secure access services eventually led to a 27 percent increase in security resilience scores.
