Indian Companies Miss Out On Half Of Security Alerts Due To Skill Gap
Indian companies receive up to 5 lakh security alerts a day, and almost 2 lakh go unattended due to lack of required skill sets
security for safety in data center room-shutterstock_121524487
India Inc. faces one of the highest cyber security threats in the Asia-Pacific region with over 500,000 security alerts on a daily basis, which is nearly thrice the number of alerts faced by global companies, points out Cisco 2018 Asia-Pacific Security Capabilities Benchmark Study.
According to the report, India leaves nearly 39 percent or approximately up to 200,000 alerts unattended due to lack of required skill sets. This was in line with its global peers in the APAC region who left half of the legitimate cyber threat alerts unattended. This presents a significant concern for the cybersecurity defenders who need to identify the genuine threats from a vast number of daily alerts.
The study further adds that a whopping 56 percent of the investigated alerts in India turns out to be false adding to the burden of existing security defenders who need to ensure that they are working on the right alerts. This leads to cybersecurity defenders experiencing cyber fatigue and give-up on trying to stay ahead of malicious attackers.
Interestingly, India witnesses the second highest instances of legitimate threats in the Asia-Pacific region behind Australia. While Australia witnesses 65 percent legitimate cybersecurity threat, India is at par with the regional standard at 44 percent.
Vishak Raman, Director, Security, Cisco said, “As India is taking huge strides in transforming into a digital economy, cybersecurity threats could pose a serious risk for its success. Companies and governments alike should consider adopting advanced security technologies that include machine learning and artificial intelligence capabilities and also look at bridging the gap of skilled cybersecurity professionals in the country through relevant training and support.
"Organizations should have a comprehensive security architecture in place, one which ensures critical data is protected across disparate networks and environments, and technologies that dynamically respond to threats as they emerge.”, he added.