cyber
TRENDS
Critical visibility gaps
Complex hybrid cloud infrastructure contributes to organisations ’ lack of control . Despite 85 % describing cloud security as a boardroom priority , hybrid cloud visibility continues to be an issue .
• Three-quarters of respondents agree that East-West ( lateral ) visibility is more important to cloud security than North-South , yet just 40 % have visibility into East-West traffic , down from 48 % in 2023
• Lateral visibility is lowest in the UK ( 30 %), while almost half report visibility in Australia and Singapore
• Encryption poses another serious blind spot : despite researchers suggesting that 93 % of malware attacks hide in encrypted traffic , a shocking 76 % of Gigamon respondents currently trust that encrypted traffic is secure
Deep observability is viewed as central to modern IT success pressures , with 59 % reporting that they would be most empowered by cyber-risk becoming a board priority . Some 69 % report they struggle to detect encrypted threats , compared to 59 % of the total respondents , and an alarming seven in 10 of CISOs believe their tools aren ’ t as effective as they could be in detecting breaches . Detection is not their only concern : three-quarters of CISOs report their security teams being overwhelmed by sprawling tool stacks , 11 % higher than their C-Suite colleagues .
“ It is clear for CISOs that organisations ’ tool stacks are falling short ,” said Chaim Mazal , CSO at Gigamon . Security leaders are under pressure from governments to reduce cyber-risk . But without real-time , network-derived intelligence and insights into all data in motion , including East-West and encrypted traffic , bad actors will continue to wreak havoc , now with AI accelerating their efforts .”
The 2024 Hybrid Cloud Security Survey was commissioned by Gigamon and fielded in collaboration with Vitreous World . The data is based on findings of an online survey of 1,033 global respondents March 22 to April 6 2024 .
When breaches are missed , tool strategies are firmly in the spotlight . More than 80 % agree that achieving unified visibility into hybrid cloud infrastructure – delivering network-derived intelligence to log-based security tooling – is key to preventing attacks . Six in 10 believe that greater visibility into all data in motion will empower them to securely deploy AI technology . As a result , 80 % agree that deep observability is a board-level priority . While Germany shows the lowest boardlevel awareness at 72 %, 89 % of boards in the US are discussing the topic .
“ Cyber-risk is firmly in the spotlight this year , with governments and boardrooms finally recognising its place at the very top of the business risk register . And yet cybercriminals are evading detection over a third of the time ,” said Mark Jow , EMEA Technical Evangelist at Gigamon . “ Today ’ s MELT-based ( Metrics , Events , Logs and Traces ) approaches are no longer enough , as organisations need 360-degree visibility across the hybrid cloud . Whether organisations are fending off AI-powered attacks , integrating AI-powered solutions into hybrid cloud environments , or seeking to establish Zero Trust , deep observability is fundamental to success .”
CISOs bear the brunt
The survey also delves into the insights of 234 CISOs globally . The results highlight that CISOs continue to bear the burden of regulatory and technological
WWW . INTELLIGENTCISO . COM 21