IBM Study: More Than Half of Organizations with Cybersecurity Incident Response Plans Fail to Test Them

Press release

Yet Use of Automation Improved Detection and Containment of Cyberattacks by nearly 25%

CAMBRIDGE, Mass., April 11, 2019 /PRNewswire/ -- IBM (NYSE: IBM) Security today announced the results of a global study exploring organizations' preparedness when it comes to withstanding and recovering from a cyberattack. The study, conducted by the Ponemon Institute on behalf of IBM, found that a vast majority of organizations surveyed are still unprepared to properly respond to cybersecurity incidents, with 77% of respondents indicating they do not have a cybersecurity incident response plan applied consistently across the enterprise.

While studies show that companies who can respond quickly and efficiently to contain a cyberattack within 30 days save over $1 million on the total cost of a data breach on average,¹ shortfalls in proper cybersecurity incident response planning have remained consistent over the past four years of the study. Of the organizations surveyed that do have a plan in place, more than half (54%) do not test their plans regularly, which can leave them less prepared to effectively manage the complex processes and coordination that must take place in the wake of an attack.

The difficulty cybersecurity teams are facing in implementing a cyber security incident response plan has also impacted businesses' compliance with the General Data Protection Regulation (GDPR). Nearly half of respondents (46%) say their organization has yet to realize full compliance with GDPR, even as the one-year anniversary of the legislation quickly approaches.   

"Failing to plan is a plan to fail when it comes to responding to a cybersecurity incident. These plans need to be stress tested regularly and need full support from the board to invest in the necessary people, processes and technologies to sustain such a program," said Ted Julian, Vice President of Product Management and Co-Founder, IBM Resilient. "When proper planning is paired with investments in automation, we see companies able to save millions of dollars during a breach."

Other takeaways from the study include:

• Automation in Response Still Emerging – less than one-quarter of the respondents said their organization significantly uses automation technologies, such as identity management and authentication, incident response platforms and security information and event management (SIEM) tools, in their response process.
• Skills Still not Paying the Bills – only 30% of respondents reported that staffing for cybersecurity is sufficient to achieve a high level of cyber resilience.
• Privacy and Cybersecurity Tied at Hip – 62% of respondents indicated that aligning privacy and cybersecurity roles is essential or very important to achieving cyber resilience within their organizations.

Automation Still Emerging For the first time, this year's study measured the impact of automation on cyber resilience. In the context of this research, automation refers to enabling security technologies that augment or replace human intervention in the identification and containment of cyber exploits or breaches. These technologies depend upon artificial intelligence, machine learning, analytics and orchestration.

When asked if their organization leveraged automation, only 23% of respondents said they were significant users, whereas 77% reported their organizations only use automation moderately, insignificantly or not at all. Organizations with the extensive use of automation rate their ability to prevent (69% vs. 53%), detect (76% vs. 53%), respond (68% vs. 53%) and contain (74% vs. 49%) a cyberattack as higher than the overall sample of respondents.

According to the 2018 Cost of a Data Breach Study, the use of automation is a missed opportunity to strengthen cyber resilience, as organizations that fully deployed security automation saved $1.5 million on the total cost of a data breach, contrasted with organizations that did not leverage automation and realized a much higher total cost of a data breach.

Skills Gap Still Impacting Cyber ResilienceThe cybersecurity skills gap appears to be further undermining cyber resilience, as organizations reported that a lack of staffing hindered their ability to properly manage resources and needs. Survey participants stated they lack the headcount to properly maintain and test their incident response plans and are facing 10-20 open seats on cybersecurity teams. In fact, only 30% of respondents reported that staffing for cybersecurity is sufficient to achieve a high level of cyber resilience. Furthermore, 75% of respondents rate their difficulty in hiring and retaining skilled cybersecurity personnel as moderately high to high.

Adding to the skills challenge, nearly half of respondents (48%) said their organization deploys too many separate security tools, ultimately increasing operational complexity and reducing visibility into overall security posture.

Privacy Growing as a PriorityOrganizations are finally acknowledging that collaboration between privacy and cybersecurity teams can improve cyber resilience, with 62% indicating that aligning these teams is essential to achieving resilience. Most respondents believe the privacy role is becoming increasingly important, especially with the emergence of new regulations like GDPR and the California Consumer Privacy Act, and are prioritizing data protection when making IT buying decisions.

When asked what the top factor was in justifying cybersecurity spend, 56% of respondents said information loss or theft. This rings especially true as consumers are demanding businesses do more to actively protect their data. According to a recent survey by IBM, 78% of respondents say a company's ability to keep their data private is extremely important, and only 20% completely trust organizations they interact with to maintain the privacy of their data.

In addition, most respondents also reported having a privacy leader employed, with 73% stating they have a Chief Privacy Officer, further proving that data privacy has become a top priority in organizations.

About the Study Conducted by the Ponemon Institute and sponsored by IBM Resilient, "The 2019 Cyber Resilient Organization" is the fourth annual benchmark study on Cyber Resilience – an organization's ability to maintain its core purpose and integrity in the face of cyberattacks. The global survey features insight from more than 3,600 security and IT professionals from around the world, including the United States, Canada, United Kingdom, France, Germany, Brazil, Australia, Middle East and Asia Pacific.

To learn more about the full results of the study, download "The 2019 Study on the Cyber Resilient Organization."

Sign up for our upcoming webinar: "Leaders & Laggards: The latest findings from the Ponemon Institute's study on the Cyber Resilient Organization" which will be held April 30 from 12:00-1:00pm EST.

About IBM SecurityIBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio, supported by world-renowned IBM X-Force® research, enables organizations to effectively manage risk and defend against emerging threats. IBM operates one of the world's broadest security research, development and delivery organizations, monitors 70 billion security events per day in more than 130 countries, and has been granted more than 10,000 security patents worldwide. For more information, please check www.ibm.com/security, follow @IBMSecurity on Twitter or visit the IBM Security Intelligence blog. 

https://newsroom.ibm.com/2019-04-11-IBM-Study-More-Than-Half-of-Organizations-with-Cybersecurity-Incident-Response-Plans-Fail-to-Test-Them

Deutsche Cyber-Sicherheitsorganisation

Il mondo cyber è visto come un rischio ma per molte società è anche un'opportunità.

E' il caso di quattro grandi società tedesche che nel novembre 2015 hanno deciso di allearsi per difendersi e offrire i loro servizi, si tratta di Allianz SE, BASF SE, Bayer AG e Volkswagen AG, riunite sotto il nome di "Deutsche Cyber-Sicherheitsorganisation" (German Cybersecurity Organisation) o, in breve, DCSO.

La necessità di affrontare le nuove sfide sempre più complesse e la velocità di cambiamento del settore tecnologico spinge alla aggregazione e così è nata la DCSO.

Tra le principali attività della DCSO vi sono:

- technology scouting, ovvero l'individuazione di tecnologie emergenti, la raccolta di informazioni su queste ultime e la canalizzazione delle informazioni all'interno delle organizzazioni che possono usufruirne nonché il supporto nella loro acquisizione;

- threat detection, ovvero l'individuazione delle minacce, in particolare di quelle riferibili ad APT;

- next generation solutions, per la ricerca di soluzioni di sicurezza cyber di nuova generazione;

- auditing;

- incident response;

- consulenza.

Alcune brevi considerazioni.

Le quattro Big tedesche non sono società che rientrano tra quelle che normalmente vengono considerate del settore, eppure ognuna di esse ha i suoi buoni motivi.

La prima, Allianz SE, è una società di servizi finanziari conosciuta al pubblico per i servizi assicurativi. In questo caso sia la necessità di conoscere meglio il nascente mercato delle assicurazioni cyber, sia la necessità di protezione delle sue reti e dei dati gestiti, può aver spinto il colosso europeo (130 miliardi di euro di fatturato nel 2018, 140.000 dipendenti, un utile netto di circa 7 miliardi di euro) ad occuparsi del settore.

Non poteva mancare la Volkswagen AG, sia perché da più di sessanta anni esistono collaborazioni con la Allianz SE, sia per migliorare la conoscenza del settore, sia in vista delle nuove tecnologie applicate al settore automobilistico.

La BASF SE, una delle più grandi industrie chimiche al mondo (62 miliardi di fatturato 2018, circa 130.000 dipendenti, 4.7 miliardi di euro di utile netto), ha scelto di partecipare all'alleanza, probabilmente anch'essa spinta dalla necessità di proteggere le proprie reti aziendali dalla crescente minaccia internazionale. La crescita degli attacchi verso le grandi società allo scopo di furto di segreti industriali è infatti in crescita, come tutto il settore. 

Infine la Bayer AG, una delle principali società farmaceutiche (circa 40 miliardi di euro di fatturato 2018, 111.000 dipendenti, circa due miliardi di utile), spinta, immagino, dalle stesse considerazioni della BASF. 

Naturalmente l'alleanza risulta importante anche per il governo tedesco che usufruisce così della capacità attrattiva delle società e della loro esperienza nei diversi settori produttivi, spingendo così allo sviluppo del settore cyber nazionale. Anche se si tratta di una società ancora giovane  i presupposti per una veloce crescita nel mondo cyber ci sono tutti.

Alessandro Rugolo

Per approfondire:

- https://dcso.de/de/about-us/;
- https://www.politico.eu/article/germanys-cyber-security-chief-on-hacking-russia-and-problems-to-hire-experts/;
- https://www.basf.com/global/de/media/news-releases/2015/09/p-15-342.html;

Reims, la gemella di Roma...

Mi sono imbattuto per caso, presso un bouquiniste di Parigi, in un libriccino stampato su carta spessa e scura edito dalle Librairie Larousse nel 1933 dal titolo "Vercingétorix, les gestes heroiques", scritto dallo scrittore Charles Gailly de Taurines (1857-1941).

Il libriccino, in lingua francese, racconta appunto le gesta di Vercingetorix, dalla sua gioventù alla fine dei suoi giorni a Roma, attaccato al carro del suo vincitore, Cesare.

Nella lettura del libro mi sono imbattuto in diverse cose interessanti e di una di queste voglio parlare, si tratta della leggenda che parla della fondazione della città di Reims.

Reims è oggi una cittadina francese ma ai tempi di Cesare era una delle città principali dei popoli della gallia belga.

L'autore afferma infatti che sin dai primi tempi in cui Cesare si trovava come proconsole in Gallia, nelle città dei belgi, si cominciava a mormorare che se le Legioni romane avessero cominciato a passare l'inverno sui loro territori dei loro vicini non sarebbero più riusciti a liberarsene e magari un giorno si sarebbero stabilite anche presso di loro.

Poco oltre si fa riferimento al fatto che gli abitanti di Reims inviarono presso Cesare i propri ambasciatori con il seguente messaggio: 

              "In fede del popolo romano, noi vi rimettiamo le nostre città e tutte le nostre ricchezze. Alle richieste pressanti dei nostri fratelli belgi noi abbiamo resistito. Non abbiamo voluto prendere parte alle loro congiure. Noi abbiamo intenzione, invece, a venire in aiuto dei romani con tutto il nostro potere, aprendo le porte delle nostre città e dividendo con essi i nostri viveri e il nostro frumento. Noi amiamo fraternamente i romani, perché noi siamo loro fratelli".

Devo dire che in un primo tempo ho pensato che dovesse trattarsi di un tentativo di inganno ai danni di Cesare ma poi, continuando a leggere mi sono dovuto ricredere infatti gli abitanti di Reims sembra abbiano effettivamente sostenuto i romani.

Ecco la spiegazione dell'autore: secondo una leggenda cara agli abitanti di Reims, il nome della loro città sarebbe derivato da quello di Remo, fratello di Romolo, fondatore di Roma. A seguito del litigio tra i due fratelli riguardo l'interpretazione da dare al volo degli avvoltoi, Remo non sarebbe stato ucciso, come si era creduto, ma portato via segretamente dai suoi compagni egli era riuscito a raggiungere, al di la delle Alpi, la gallia belga, territorio sul quale era stata fondata la città che conservava il suo nome.

Secondo l'autore, a Reims, una porta romana ancora in piedi attestava l'antichità della leggenda. I suoi bassorilievi infatti rappresentavano la lupa romana che allatta i due gemelli e a ricordo del loro padre divino, la porta ha conservato nei secoli il nome di "porta di Marte".

Da quel giorno gli abitanti di Reims furono alleati dei romani e non violarono mai il proprio giuramento.

E' la prima volta che sento parlare di una simile leggenda.
Oggi nella città di Reims è possibile vedere ancora la Porta di Marte, l'unica di quattro porte della città ad essere sopravvissuta ai secoli.
La città ai tempi di Cesare veniva chiamata dai romani "Durocortorum" e la porta sembra sia stata costruita tra il 180 e il 230 dopo Cristo come arco di trionfo.
Che la leggenda abbia o meno un fondo di verità poco importa, certo è che Reims non tradì Cesare e che la città assunse un ruolo importante nei secoli che venirono.

Alessandro Rugolo

Amazon Provides Robotics Grants to 100 Schools in Underserved and Underrepresented Communities Across the Country to Inspire Next Generation of Computer Scientists

Press release 

April 12, 2019 at 3:00 AM EDT

The Amazon Future Engineer grants fund FIRST robotics program registrations to start a robotics club, $10,000 to expand access to computer science education, and a personal tour of a local Amazon fulfillment center

Thousands of children in 100 schools across 21 states set to benefit starting in the fall

Amazon Future Engineer is a four-part, childhood-to-career program that works to inspire and educate 10 million children and young adults each year from underrepresented and underserved communities to pursue careers in the fast-growing field of computer science and coding

SEATTLE--(BUSINESS WIRE)--Apr. 12, 2019-- Amazon (NASDAQ: AMZN) and FIRST today announced that 100 schools serving students from underrepresented and underserved communities from across the country will receive an Amazon Future Engineer Robotics Grant to inspire the next generation of computer scientists. The 100 schools across 21 states will receive support to launch FIRST robotics teams, including teacher professional development to learn about robotics, $10,000 from Amazon to expand access to computer science education in their school, and a tour of a local Amazon fulfillment center. Read more about the new program here.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20190412005073/en/

KIPP Columbus students tour an Amazon fulfillment center as part of Amazon Future Engineer robotics grant program. (Photo: Business Wire)

FIRST’s mission is to inspire young people to be science and technology leaders and innovators by engaging them in exciting mentor-based programs that build science, engineering, and technology skills to students in grades K-12. Data from a 5-year longitudinal study of FIRST by Brandeis University shows competitive FIRST robotics programs works for all youth. Across all demographic groups (gender, race, economic status and geography), FIRST students show significant gains in STEM knowledge, STEM interest, STEM career interest, STEM identity, and STEM activity compared to their peers who don’t participate. FIRST students are more likely to major in tech-focused science fields in college; by their second year of college, over 50 percent declare majors in engineering or technology. The impact on young women in FIRST is particularly profound. By their first year of college, female alumnae of FIRST are 3.6 times more likely to take an engineering course, and 1.9 times more likely to take a computer science course than female comparison students.

“Our students have been working incredibly hard over the course of their educational journeys to be in a position to take rigorous computer science courses, and this experience visiting the fulfillment center, as well as the support to expand our programming next year, is so empowering to them,” said Jake Kuhnline, Assistant Director of Teaching & Learning, KIPP Columbus in Columbus, Ohio. “It's rare that I hear a bus full of high schoolers talking about robotics, computer science, and the future of programming, but that trip generated that much enthusiasm.”

“The Amazon Future Engineer Robotics Grant is a game changer for middle and high school students throughout 53 KIPP schools around the country,” said Dave Levin, co-founder of KIPP Public Schools. “The generosity of Amazon will ensure more KIPP students than ever will have the opportunity not only to pursue successful careers in STEM, but help diversify the industry for future generations.”

"Amazon is helping FIRST in our goal to make robotics teams and programs available in every school,” said Dean Kamen, founder of FIRST and president of DEKA Research & Development. “In FIRST, every kid on every team can go pro. They gain a hands-on learning pathway in technology, computer science and engineering that propels them forward and inspires innovation."

“We can’t wait to bring thousands of students into Amazon’s fulfillment centers to show them the amazing technology operating behind the scenes,” said Jeff Wilke, CEO Consumer Worldwide, Amazon. “These students are the innovators of the future, and we’re confident that this hands-on experience provided by Amazon Future Engineer will inspire them in their academic pursuits and beyond.”

The Bureau of Labor Statistics projects that by 2020 there will be 1.4 million computer-science-related jobs available and only 400,000 computer science graduates with the skills to apply for those jobs. Computer science is the fastest-growing profession within the Science, Technology, Engineering and Math (STEM) field, but only 8% of STEM graduates earn a computer science degree, with a tiny minority from underprivileged backgrounds. Students from underprivileged backgrounds are 8 to 10 times more likely to pursue college degrees in computer science if they have taken AP computer science in high school.

Launched in November, 2018, Amazon Future Engineer is a four-part childhood-to-career program intended to inspire, educate, and prepare children and young adults from underrepresented and underserved communities to pursue careers in the fast-growing field of computer science. Each year, Amazon Future Engineer aims to inspire more than 10 million kids to explore computer science; provide over 100,000 young people in over 2,000 high schools access to Intro or AP Computer Science courses; award 100 students with four-year $10,000 scholarships, as well as offer guaranteed and paid Amazon internships to gain work experience. Amazon Future Engineer is part of Amazon’s $50 million investment in computer science/STEM education. In addition, Amazon Future Engineer has donated more than $10 million to organizations that promote computer science/STEM education across the country.

Press release