UK Firms Concerned About Cyber Arms Race
Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges
Only 56% of UK firms believe they have sufficient cyber security skills in-house to deal with threats, a survey has revealed.
UK organisations are concerned about their abilities to keep pace with the persistent rise of new cyber security challenges, according to the latest annual Data health check survey by business continuity and IT disaster recovery firm Databarracks.
Now in its 10th year, the survey questions more than 400 IT decision-makers in the UK about a series of critical issues relating to their IT, security and business continuity practices.
The latest survey shows that 44% of the companies polled lack confidence in their cyber defence capabilities, despite 67% saying they had invested in safeguards to help fight against cyber threats in the past 12 months – up from just 59% in 2016.
The survey shows that the types of safeguard that organisations have invested in to protect against cyber threats have changed dramatically in recent years.
In 2016, only 12% of organisations said they had updated their cyber security policy in the past 12 months, compared with 26% in 2018. Similarly, cyber threat monitoring software is now used in 28% of businesses, compared with only 13% in 2016.
Because of increasing digitisation, the number of businesses protecting more than 100TB of data has more than doubled in the past 10 years, the survey shows, with 16% of the 2018 respondents admitting they do not know how much data they are protecting.
Although the proportion of organisations encrypting backup data has increased from 53% to 67% in the past decade, one-third still do not encrypt their backups.
The survey also shows that the employment of a chief information security officer (CISO) has jumped from 1% in 2016 to 14% in 2018.
Peter Groucutt, managing director of Databarracks, said investment in cyber security safeguards should translate into improved confidence, but the findings show it is yet to make a significant difference.
“We are in the midst of a rapidly accelerating arms race,” he said. “Organisations are desperately trying to match criminals by working hard to improve knowledge, training and investment in security defences, but are clearly concerned about keeping pace.”
But it is important that organisation do not become disheartened, said Groucutt. “While confidence levels are not where we had hoped, businesses are making positive strides and acting on the front foot to fight back, which makes us optimistic for the future,” he said.
“Critically, it is not just about hiring a CISO, or introducing a new cyber security policy or investing in new threat monitoring software – it’s about all of these activities and a fundamental culture change for most organisations.
“Cyber threats are evolving at such a pace that organisations cannot stand still. In previous years, organisations have failed to match these threats with action and investment. Today, businesses are fighting back and shoring up defences, as our data shows.”
The research also revealed that 69% of organisations have reviewed their cyber security policies within the past 12 months, whereas in 2015, only 54% had reviewed their policies.
Budgets are also rising, with 36% of organisations saying they have seen their IT security budget increase in the past 12 months, compared with 24% in 2016. Meanwhile, the proportion of organisations impacted by cyber threats in the past 12 months has dropped from 74% in 2015 to 66% in 2018.
Asked whether they had put additional measures in place in response to the EU’s General Data Protection Regulation (GDPR), 36% of organisations said they had, up from just 13% in 2017.
“Over time, as organisations see this increased proactivity and investment lead to better security, we are hopeful that confidence will also improve,” said Groucutt.
The survey also reveals a positive overall trend in disaster recovery, with more rigorous governance, planning and testing, all leading to greater confidence.
The proportion of companies with an IT disaster recovery plan within their business continuity plan has increased from 79% in 2016 to 82% in 2018, while those testing their disaster recovery plans has increased from 42% in 47%.
Source: computerweekly
Latest Jobs
-
- Google Cloud Data Engineer
- London
- Up to £90,000 Base
-
Google Cloud Data Engineer London Salary: Up to £90,000 Base We are currently working with a leading Google Cloud partner who are currently looking for a Google Cloud Data Engineer in London. The Google Cloud Data Engineer will be responsible for projects designing and implementing data cataloguing platforms using Google Cloud. Current Experience Required: Google Cloud (MUST be Google Cloud Professional Engineer Certified and worked on recent GCP/Google Cloud Projects). Data Analytics (Data Engineering, Data Mining, Data Cataloguing etc.) Cloud PUB / SUB Candidates must be UK based and commutable to London. Candidates outside of the EU can not be sponsored Apply for more information or call Peter Georgiou on 02086634030. Ref: PG7692
-
- Microsoft Azure Sales Consultant
- London
- Up to £100,000 Base + OTE
-
DCL are currently working on behalf one of the fastest growing service providers in London who are on the lookout for a consultative Microsoft Azure Sales Consultant. The Microsoft Azure Sales Consultant will be responsible for selling (opening and closing new business opportunities new business) and being the SME in all things Cloud providing support to other members in the sales team. Preference will be given to the Microsoft Azure Sales Consultant who possesses Exceptional knowledge of Cloud Technology (Public / Private / Hybrid.). Current experience with technology such as Azure, AWS, Office 365 is required Proven sales experience of identifying and closing new business within the Cloud market. Must be currently selling into the enterprise market. Consistency on tenure in current and past roles. New business background is a must In return you will be working for a successful, growing SME organisation with excellent training and sales support from pre-sales, post-sales, project management, service management, bid management, pricing and customer service. Candidates must be UK Based. sponsorship can not be provided for this role. Reference Number: BD7690 (Cloud Sales Jobs, Cloud Computing Jobs, Cloud Computing Sales)
-
- Senior Incident Cyber Response Consultant
- London
- Up to £75,000 Base
-
Senior Incident Cyber Response Consultant with Forensic experience is needed to join a global consultancy whose cyber business unit are continuing to their investment in the growth of their team. From my perspective, as a recruitment partner, this is a particularly interesting and exciting opportunity. Not only is the team in an active growth mode, but they have varied, high profile and interesting projects for their team. Globally recognised. This is an opportunity to drive and grow a career. Experienced Senior Incident Cyber Response Consultant is needed to help take clients through the complete IR / triage process. The position is be client facing and will be expected to engage with clients at a commercial level. Proactive IR planning is also key to the position. The Senior Incident Cyber Response Consultant will not hold a sales target, but any previous experience in identifying and generating revenue is highly sort after. A broad forensic background would be highly desirable also. An ideal Senior Incident Cyber Response Consultant will be CREST CCIR, CCIM certified. Experience with forensics is highly desirable. Any of the following are very desirable also CREST Certified Network Intrusion Analyst (CCNIA) CREST Certified Host Intrusion Analyst (CCHIA) CREST Certified Malware Reverse Engineer (CCMRE) CREST Practitioner Intrusion Analyst (CPIA) An individual must be London commutable Key attributes should also include; stakeholder engagement, mentoring of team members, a collaborative working style. Technical experience must include; demonstrable experience within cyber incident response, Forensic, cyber etc. Additional certifications could / should include GIAC certified (Intrusion analyst, incident handler, forensic handler) The opportunity for an individual to conduct malware research and analysis is actively promoted. Career development and the opportunity to influence, apply today for more information or call Chris Holt on 07884666351 or 02086634030 or email chris.holt@dclsearch.com Unfortunately, our client are unable to provide sponsorship for this opportunity. Candidates must be UK based. Ref: CH7679 (Incident Response Jobs, CREST Jobs, Digital Forensics Jobs, IR Jobs)
-
- Principal Electrical Engineer
- London
- Salary: Up to £90,000 Base + Bonus
-
Principal Electrical Engineer Location: London Salary: Up to £90,000 Base + Bonus A Principal Electrical Engineer is needed for a state of the art, London based Data Centre provider. The Principal Electrical Engineer will be responsible for all of the Mechanical & Electrical components (support, development/design etc.) within our clients Data Centre’s. Other responsibilities include but not limited to; Commissioning, approving, design & review/improvement of new data centre infrastructure Commercial’s (Contract negotiation, project finances etc.) Project management Training/Development of other staff General engineering tasks Requirements HND / Degree in Engineering or equivalent. Must have current/recent experience (ideally in a senior position) within a mechanical & electrical position within a Data Centre environment Candidates must be UK based and unfortunately, our client are unable to provide sponsorship Ref: PG7600 (M&E Jobs, Mechanical & Electrical Jobs, Engineering Jobs, Data Centre Jobs, Data Center Jobs)