A report from Gigamon analyzed the difference between how secure an organization perceives itself to be and how secure it actually is. The report found that while surface-level confidence around hybrid cloud security is high, with 94% of global respondents stating their security tools and processes provide them with complete visibility and insights into their IT infrastructure, the reality is IT and security professionals don’t spot almost one third of security breaches.

Ninety-three percent predict cloud security attacks are only going to increase, and 90% had experienced a breach in the last 18 months. The issue is that 31% of breaches are being identified later down the line, rather than preemptively using security and observability tools — either by data appearing on the dark web, files becoming inaccessible or users experiencing slow application performance (likely due to DoS or inflight exfiltration). This number rises to 48% in the U.S. and 52% in Australia. 

Ninety-six percent of IT and security leaders around the world believe cloud security is everyone’s responsibility, and almost all (99%) see CloudOps and SecOps working towards a common goal. 

According to the report, unexpected blind spots (56%), legislation (34%) and attack complexity (32%) that keep CISOs and other IT leaders up at night, while a lack of cyber investment is worrying 14% of global respondents, along with 20% who were concerned about the ongoing skills gap. Nineteen percent claim effective security education for staff is a crucial factor for gaining confidence on IT infrastructure security.

Legislation is a growing worry on a global scale, and is a particular issue for the U.K. and Australia: 41% in the U.K. and 59% in Australia see change in cyber laws and compliance as a key concern.

Read the full report here.