Gartner Says By 2018, 40 Per Cent of Large Organisations Will Have Formal Plans to Address Aggressive Cyber-Security Business Disruption Attacks

Recent Large-Scale Attacks Move Focus from Blocking and Detecting Attacks, to Detecting and Responding to Attacks

STAMFORD, Conn., (PresseBox) - Although the frequency of a cyber-security attack on a large scale is low, by 2018, 40 per cent of large organisations will have formal plans to address aggressive cyber-security business disruption attacks, up from 0 per cent in 2015, according to Gartner, Inc. Business disruption attacks require new priority from chief information security officers (CISOs) and business continuity management (BCM) leaders, since aggressive attacks can cause prolonged disruption to internal and external business operations.

"Gartner defines aggressive business disruption attacks as targeted attacks that reach deeply into internal digital business operations with the express purpose of widespread business damage," said Paul Proctor, vice president and distinguished analyst at Gartner. "Servers may be taken down completely, data may be wiped and digital intellectual property may be released on the Internet by attackers. Victim organisations could be hounded by media inquiries for response and status, and government reaction and statements may increase the visibility and chaos of the attack. Employees may not be able to fully function normally in the workplace for months. These attacks may expose embarrassing internal data via social media channels - and could have a longer media cycle than a breach of credit card or personal data."

To combat these types of attacks, CISOs must pivot approaches from blocking and detecting attacks, to detecting and responding to attacks.

"Entirely avoiding a compromise in a large complex organisation is just not possible, so a new emphasis toward detect and respond approaches has been building for several years, as attack patterns and overwhelming evidence support that a compromise will occur," said Mr Proctor. "Preventive controls, such as firewalls, antivirus and vulnerability management, should not be the only focus of a mature security programme. Balancing investment in detection and response capabilities acknowledges this new reality."

The rise of ubiquitously connected devices and the Internet of Things (IoT) has expanded the attack surface, and commands increased attention, larger budgets and deeper scrutiny by management. Digital business should not be restricted by these revelations, but emphasis must be placed on addressing technology dependencies and the impact of technology failure on business process and outcomes. Information owners should be made explicitly accountable for protecting their information resources, ensuring they will give due consideration to risks when they commission or develop new digital business solutions.

The expectation that digital business will be a successful consumer business model relies on IoT devices being "always available." An interruption at any point during the end-to-end transaction process means that business transactions may not be completed, thereby negatively affecting customer allegiance and the revenue stream expected from the digital business offering.

As a result, the standard of due care for security programme maturity will increase, with risk, security and BCM leaders getting more pressure and more support from executive boards than ever before. Executive boards have increased their attention on cyber security since 2012, but new revelations of business disruption attacks provide a fresh opportunity to build the new business case for cyber-security investment and institutionalise more-proactive thinking about cyber-security risks.

"CISOs and chief risk officers (CROs) can and should persuade executives to shift their thinking from traditional approaches toward risk, security and business continuity management. Security is not a technical problem, handled by technical people, buried somewhere in the IT department," said Mr Proctor. "Organisations need to start solving tomorrow's problems now."

More detailed analysis is available in the Gartner report "Attack on Sony Pictures Is a Digital Business Game Changer." The report is available on Gartner's web site at http://www.gartner.com/document/2980517.

Additional details on business disruption attacks will be discussed at the Gartner Security & Risk Management Summit 2015 taking place on 14-15 September in London. More information on the event is at http://www.gartner.com/technology/summits/emea/security/.

Members of the media can register for press passes to the Summit by contacting laurence.goasduff@gartner.com.

Information from the Gartner Security & Risk Management Summits 2015 will be shared on Twitter at http://twitter.com/Gartner_inc using #GartnerSEC.

Gartner UK Ltd

Gartner, Inc. (NYSE: IT) is the world's leading information technology research and advisory company. The company delivers the technology-related insight necessary for its clients to make the right decisions, every day. From CIOs and senior IT leaders in corporations and government agencies, to business leaders in high-tech and telecom enterprises and professional services firms, to technology investors, Gartner is the valuable partner to clients in over 9,100 distinct enterprises worldwide. Through the resources of Gartner Research, Gartner Executive Programs, Gartner Consulting and Gartner Events, Gartner works with every client to research, analyze and interpret the business of IT within the context of their individual role. Founded in 1979, Gartner is headquartered in Stamford, Connecticut, USA. and has 6,600 associates, including more than 1,500 research analysts and consultants, and clients in 85 countries. For more information, visit www.gartner.com.

Press releases you might also be interested in

Weitere Informationen zum Thema "Security":

Office 365 mit Netwrix Auditor effizient überwachen

Un­ter­neh­men, die auf Of­fice 365 set­zen, be­nö­t­i­gen Lö­sun­gen um die Ver­wen­dung und Si­cher­heit der wich­tigs­ten Di­ens­te zu über­wa­chen. Mit Net­wrix Au­di­tor kann ein Ad­min auf Ex­chan­ge On­li­ne, Sha­re­Po­int On­li­ne und One­Dri­ve for Bu­si­ness ein Au­ge wer­fen. Paral­lel zu Of­fice 365 lässt sich mit Net­wrix Au­di­tor au­ßer­dem auch noch das Mi­cro­soft Azu­re Ac­ti­ve Di­recto­ry über­wa­chen.

Weiterlesen

Subscribe for news

The subscribtion service of the PresseBox informs you about press information of a certain topic by your choice at a choosen time. Please enter your email address to receive the email with the press releases.

An error occurred!

Thank you! You will receive a confirmation email within a few minutes.


I want to subscribe to the gratis press mail and have read and accepted the conditions.