Security organizations are operating using undocumented processes: Report

Are businesses still only doing impromptu security?

This is among major findings in HP Enterprise’s 2016 report on the state of security, which suggests that “security organizations operate in an ad-hoc manner with undocumented processes.”

In its report, published today, says that key trends observed around the world include the concept of a mind-shift to a “we’ve already been breached” model, leading to the rise of hunters and analysts. These security professionals seek to identify hackers as well as develop analytics capabilities, yet few have yet to achieve the latter.

Hybrid security is also an emerging trend. This has emerged as a response to a shortage in security skills within organizations, leading some, but not all the work to be outsourced. Organizations still retain a certain level of control, while allowing outside parties to handle large portions of responsibility. Security orchestration and automation have also resulted from the skills shortage as organizations seek to minimize their costs. External resources are used for level 1 monitoring, while level 2 and incident response are kept in-house.

Once bitten, twice shy?

According to HPE, “organizations that recognize the business criticality of protecting their enterprises, or those who have experienced direct financial loss due to malicious attacks, do a better job of maturing to a higher level.”

Overall, the company says, companies are starting to understand the financial implications of breaches. They are, in turn, also using any security capabilities of their organization as a selling point.

With the adoption of cloud, new experts capable of security in hybrid environments are needed. The myth that cloud adoption mitigates risk is very much prevalent, the report said.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

CDN Staff
CDN Staff
For over 25 years, CDN has been the voice of the IT channel community in Canada. Today through our digital magazine, e-mail newsletter, video reports, events and social media platforms, we provide channel partners with the information they need to grow their business.

Related Tech News

Featured Tech Jobs


CDN in your inbox

CDN delivers a critical analysis of the competitive landscape detailing both the challenges and opportunities facing solution providers. CDN's email newsletter details the most important news and commentary from the channel.