DUBAI, United Arab Emirates : IBM (NYSE: IBM) Security today announced the results of a Middle East study exploring organizations’ preparedness in the Kingdom of Saudi Arabia (KSA) and the United Arab Emirates (UAE) when it comes withstanding and recovering from a cyberattack. The study, conducted by Ponemon Institute and sponsored by IBM Resilient, found that approximately third of organizations are still unprepared to respond to cybersecurity incidents, with 31% of respondents indicating they do not have a cybersecurity incident response plan in place.

While studies show that companies who can respond quickly and efficiently to contain a cyberattack within 30 days save over $1 million on the total cost of a data breach on average, Source: IBM/Ponemon Institute Cost of a Data Breach Study shortfalls in proper cybersecurity incident response planning have remained consistent over the past four years of the study. Of the organizations that do have a plan in place, almost half (49%) do not test their plans regularly, leaving them less prepared to effectively manage the complex processes and coordination that must take place in the wake of an attack. 

“Responding to a cybersecurity incident in a planned and coordinated manner can be complicated and requires specialized expertise. Therefore, having a cyber security plan in place is no longer an option,” said Dr. Tamer Aboualy, Partner, IBM Security Services, Middle East & Africa. “Cybersecurity attacks can be damaging financially and to the reputation of a businesses. Therefore, it is important that organizations deploy a cybersecurity incident response plan as it increases the likelihood of preventing incidents and reduces the time to detect, contain and respond to an attack.” 

He continued, "We have seen a rise of targeted attacks in the region and globally. Advanced malware has targeted many organizations with the goal of stealing information, corrupting disks and crippling their operations. Today, it is no longer a question of being a victim of a targeted attack but how organizations will respond and remediate such threats, causing minimal impact to their operations."

Other takeaways from the study include:

  • Automation in Response Still Emerging – In the context of this research, automation refers to enabling security technologies that augment or replace human intervention in the identification and containment of cyber exploits or breaches. These technologies depend upon artificial intelligence, machine learning, analytics and orchestration. When asked if their organization leveraged automation, only 19% of the respondents said they were significant users.
  • Skills Still not Paying the Bills – The cybersecurity skills gap is further undermining cyber resilience, as organizations are understaffed and unable to properly manage resources and needs. In the survey, 74% of respondents reported that staffing for cybersecurity is very important to achieve a high level of cyber resilience. Furthermore, 72% of respondents rate their difficulty in hiring and retaining skilled cybersecurity personnel as moderately high to high.
  • Privacy and Cybersecurity Tied at Hip – Organizations are finally acknowledging that collaboration between privacy and cybersecurity improves cyber resilience with 55% of respondents indicated that aligning privacy and cybersecurity roles is essential or very important.

Conducted by the Ponemon Institute and sponsored by IBM Resilient, “The 2019 Cyber Resilient Organization” is the fourth annual benchmark study on Cyber Resilience – an organization’s ability to maintain its core purpose and integrity in the face of cyberattacks. The global survey features insight from more than 3,600 security and IT professionals from around the world, including the United States, Canada, United Kingdom, France, Germany, Brazil, Australia, Middle East (KSA and UAE) and Asia Pacific.

© Press Release 2019

Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.

The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.

To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.