New Research: Why IT and Security Leaders Are Strengthening Cyber Resilience

September 19, 2024

Complexity has skyrocketed over the last few years. Surges in digital transformation efforts, work environment shifts and increasing cyberattacks have all contributed to adverse organizational changes and IT and security protocols.

 

We wanted to understand how IT and security teams were adapting to this increasing complexity, so in February 2024, we conducted a survey of 500 IT and security decision-makers across the United States.

 

The results? IT and security leaders are making intentional efforts and investments to bolster cyber resilience — the concept of being able to efficiently detect, respond to and recover from cyber incidents while ensuring business continuity.

 

In this blog post, we’ll share our top three research takeaways and review why and how IT and security decision-makers are strengthening their cyber resilience as dependence on technology deepens, complexity increases and the overall landscape evolves.

 

 

Cyber Resilience Is a Top-of-Mind Priority

Complexity isn’t new in the IT and security world, but the rate at which it’s growing is. Digital transformation efforts, rapid cloud-based SaaS adoption, device proliferation, increased third-party and vendor connections and the ongoing skill shortages all add new and evolving IT and security challenges. In response, IT and security leaders are prioritizing cyber resilience.

 

According to the data from our report, 99% of decision-makers understand the importance of cyber resilience in reducing exposure to critical infrastructure, enhancing enterprise security posture and ensuring compliance. With 77% of respondents reporting an increase in their organization's cyber resilience over the past 12 months and 80% anticipating further improvement in 2024, it’s safe to say cyber resilience is only expected to grow.

 

And here's why: cyberattacks are becoming larger in scale, and IT and security leaders are turning to cyber resilience to help ensure business continuity (35%) and to manage an increase in cyberattacks and cyber threats (32%).

 

 

Using Cyber Resilience to Combat Emerging Threats

While 88% of surveyed leaders believe their organization would be able to continue operating in the event of a security incident, every respondent expressed concerns about various external and internal threats to their IT and security programs.

 

Those concerns include:

 

  • Integration with existing systems: 26% of respondents expressed this as the top challenge currently facing teams. We found organizational leadership also shares the same integration concerns, particularly compatibility between new cyber resilience resources and existing cybersecurity infrastructure and how time-consuming the improvement process will be.
  • Cloud security: The rapid shift to multi-cloud operations and SaaS apps have contributed to increased concerns about cloud security. Although cloud infrastructure has helped organizations reduce costs, improve efficiency and boost productivity, more than half of the IT and security decision-makers (55%) listed cloud security as the top anticipated threat to cyber resilience over the next 12 months.
  • Talent and skills challenges: IT and security leaders continue to feel the strain of skills shortages. Over a quarter of respondents (26%) cited staffing issues, reduced IT and security budgets (25%) and lack of employee training (21%) as top threats to their cyber resilience strategies over the next year.

 

 

More Investment

To strengthen attack surface security, in its Top Cybersecurity Trends in 2024, Gartner recently advised security leaders to focus more on resilience-oriented investments to enhance risk management of third-party services in 2024 due to the inevitability of third parties experiencing cybersecurity incidents.

 

What we found in our report reflects the Gartner recommendation. The top category of tools IT and security leaders are investing in include cloud security solutions (54%), identity and access management tools (43%) and cyber asset attack surface management (CAASM) solutions (41%).

 

Interestingly, over 40% of respondents also reported they’ll continue to use CAASM solutions in the future — and for good reason.

Allie Byers
Content Writer | Axonius
Allie Byers is a content writer with five years of experience in the industry. She has a passion for storytelling and a knack for simplifying complex topics.

Optiv Security: Secure greatness.®

Optiv is the cyber advisory and solutions leader, delivering strategic and technical expertise to nearly 6,000 companies across every major industry. We partner with organizations to advise, deploy and operate complete cybersecurity programs from strategy and managed security services to risk, integration and technology solutions. With clients at the center of our unmatched ecosystem of people, products, partners and programs, we accelerate business progress like no other company can. At Optiv, we manage cyber risk so you can secure your full potential. For more information, visit www.optiv.com.