Organizations are improving their cyber resilience and reducing the rate of successful cyber attacks. While the number of targeted attacks has more than doubled, organizations have reduced the rate of successful attacks from 30% to 13%. Security teams are also detecting a higher percentage of attacks, around 63% on average, and are detecting breaches much faster, from months/years to just days/weeks. Cybersecurity capabilities have improved by 42% overall. However, organizations need to focus not just on external attacks but also internal threats, as internal attacks are among the most frequent and damaging. Maintaining investment in cybersecurity will be important to continue progress on improved security resilience going forward.
3. Organizations are improving cyber resilience and showing they can
perform better under greater pressure as the number of targeted attacks
more than doubles.
CLOSING THE GAP ON CYBER ATTACKS
Organizations reduced the rate
of successful attacks: From 30% to 13%.
In the past 12 months, how many attempted / successful breaches have you
identified and how many were successful?
Average.
2018
258
35
Targeted attacks
Security breaches
Ireland
4. 14%
30%
45%
10%
24%
28%
22%
23%
Less than 50%
51%-65%
66%-75%
76% or more
2017 2018
13%
33%
46%
8%
17%
31%
21%
31%
Less than 50%
51%-65%
66%-75%
76% or more
2017 2018
CLOSING THE GAP ON CYBER ATTACKS
Despite the rising number of cyber attacks, security teams continue to
identify nearly two-thirds of all breach attempts, 63% on average, and twice
as many of them are now able to detect 76% or more cyber attacks.
Proportion of cyber
attacks discovered
by security teams
Global
Global mean:
63%
Ireland mean: 70%
Ireland
6. 12% 43% 34% 11%Global
Less than one day 1-7 days 1-4 weeks More than one month
9% 49% 32% 10%q16
CLOSING THE GAP ON CYBER ATTACKS
The majority of security teams are also more effective at finding security
breaches faster—from months and years to just days and weeks.
Improvements in detection speed
of security breaches
Thinking about the past year, how long, on average, did it take for a
successful breach to be detected?
Ireland
8. CLOSING THE GAP ON CYBER ATTACKS
Being better at detection, prevention and collaboration is not all that
security teams can be proud of—they have also realized an impressive 42
percent improvement in security capabilities.
Cybersecurity
capabilities rated
high performing
Capabilities rated
high performing:
2018 Global : 19
2018 Ireland: 23
9. CLOSING THE GAP ON CYBER ATTACKS
In terms of delivering the next wave of improvements, it is easy to focus
exclusively on counteracting external attacks, but organizations should not
neglect the enemy within.
Most damaging security breaches
ranked by frequency and impact
28% of respondents ranked
‘External Attacks’ as having the
greatest impact on their
organization while 33% ranked
‘Internal Attacks’ as the most
frequent.
13. 18%
34%
59%
0%
10%
20%
30%
40%
50%
60%
70%
80%
90%
100%
2016e 2017 2018 2019e 2020e 2021e
Global Measured capability average Filtered sample Log. (Global Measured capability average)Ireland
CLOSING THE GAP ON CYBER ATTACKS
If the current rate of progress is maintained, organizations could reach a
sustainable level of cyber resilience in the next two to three years.
Forecast of average cybersecurity capabilities reaching a sustainable level of cyber resilience
Cyber resilience embedded into the business*
*Estimate based on current rate of
improvement 13