How to tackle cybersecurity debt

When the COVID-19 pandemic accelerated digital expansion, many businesses introduced new technology without building in cybersecurity controls from the start.

The CyberArk 2022 Identity Security Threat Landscape Report found that security professionals agree — recent organization-wide digital initiatives have come at a price. The report surveyed 1,750 cybersecurity decision-makers, highlighting their experiences over the past year in supporting their organizations’ expanding digital initiatives.

Increasing levels of cybersecurity debt

While security programs have expanded, they have not kept pace with organizations’ operational and business growth investments. This has created cybersecurity debt, which emerged through not properly managing and securing access to sensitive data and assets. According to the report, a lack of identity management controls has increased enterprise risk.

The cybersecurity debt is compounded by the recent rise in geopolitical tensions, which have reinforced the need for heightened awareness of the physical consequences of cyberattacks, especially on critical infrastructure:

Seventy-nine percent of report respondents agree that their organization prioritized maintaining business operations over ensuring robust cybersecurity in the last 12 months.
Less than half (48%) have identity security controls in place for their business-critical applications.

How to fight cybersecurity debt

Transparency: 85% of respondents say that a Software Bill of Materials would reduce the risk of compromise stemming from the software supply chain.
Manage sensitive access: The top three measures that most chief information officers (CIOs) and chief information security officers (CISOs) have introduced are real-time monitoring and analysis to audit privileged session activity; least privilege security and zero trust principles on infrastructure that runs business-critical applications; and processes to isolate business-critical applications from internet-connected devices to restrict lateral movement.

For more report insights, click here.

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe.

In today's rapidly evolving security landscape, organizations face an ever-growing array of disruptive events, security threats and risks. Traditional reactive approaches to security intelligence often leave businesses vulnerable and ill-prepared to anticipate and mitigate emerging threats that could impact the safety of their people, facilities or operations.

How to tackle cybersecurity debt

Increasing levels of cybersecurity debt

How to fight cybersecurity debt

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

How to tackle cybersecurity debt

Increasing levels of cybersecurity debt

How to fight cybersecurity debt

Share This Story

Related Articles

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.