Enterprise SIEMs unprepared for 84% of MITRE ATT&CK tactics and techniques
CardinalOps, provider of an AI-powered Threat Coverage Optimization Platform, unveiled new independent research which highlights dramatic failures within the enterprise Security Information and Event Management (SIEM) of the Fortune 1000.
Organizations invest more than $3 billion annually on SIEM software and expect this investment to result in comprehensive threat coverage. However, an analysis of live SIEM deployments across select CardinalOps customers in multiple industry verticals, including healthcare and financial services, reveals that the threat coverage remains far below what organizations expect and what SIEM and detection tools can provide. Worse, organizations are often unaware of the gap between the theoretical security they assume they have and the actual security they get in practice, creating a false impression of their security posture. Nine out of ten of customers surveyed represent multibillion dollar, multinational corporations – making this one of the largest recorded samples of actual SIEM data analyzed to date.