LogRhythm, a company powering today’s security operations centres (SOCs), has released am intriguing report titled, The State of the Security Team: Are Executives the Problem? Among the surprising findings were that 93% of security professionals lack the tools to detect known security threats and 92% state they are still in need of the appropriate preventative solutions to close current security gaps.
Based on a global survey of more than 300 security professionals and executives to understand the root causes of the stress under which security teams operate, obtain feedback on the ways in which it could be alleviated and the best paths to remediation. It found 75% of security professionals now experience more work stress than just two years ago.
Security Team Stress Increases Without Executive Leadership
When asked what caused the most work-related stress, the two most selected answers were not having enough time (41%) and working with executives (18%). In fact, 57% of respondents indicated their security program lacks proper executive support — defined as providing strategic vision, buy-in and budget.
Furthermore, security professionals cited inadequate executive accountability for strategic security decision as the top reason (42%) they want to leave their job. An alarming statistic, given nearly half of companies (47%) are trying to fill three or more security positions.
“As businesses across the world accelerate digital adoption to ensure operations continue to run seamlessly following the onset of COVID-19, the pressure on cybersecurity teams to perform are even higher than before. However, the outstanding challenge with the shortage of cybersecurity talents, where Asia Pacific faces a huge 2.6 million shortfall, means that there is an urgent need to help relieve the pressure from security professionals, in order for them to be more efficient and effective in their job,” said Joanne Wong, VP for International Markets, LogRhythm. “In addition to expanding the security team size, implementing smarter detection-focused tools could significantly help security professionals to better analyse network traffic and user behavioural data and speed up threat detection and remediation.”
Deployment of Redundant Security Tools Points to Value of Tool Consolidation
68% of respondents admitted their organisation has deployed redundant security tools, and 56% confess this overlap is accidental — once again emphasising the need for improved strategic oversight from executives. Despite duplicative tools, 58% of respondents said they still need increased funding for tools when asked what additional support their security programs require.
Consequently, the report highlights the growing value of IT consolidation. Security professionals rate the value of solution consolidation highly, citing top benefits as less maintenance (63%), faster issue detection (54%), identification (53%), and resolution (49%), as well as lower costs (46%) and improved security posture (45%). Yet, only one in three companies (32%) have a real-time security dashboard which provides a clear, consolidated view of all their security solutions.
Top Five Ways to Reduce Stress Among Security Teams
- When asked what would help alleviate their stress, the top five responses included:
- 44%: Increased security budget
- 42%: Experienced security team members
- 42%: Better cooperation from other IT teams
- 41%: Supportive executive team
- 39%: Fully staffed security team
For more information on LogRhythm or to download the full report, click here.