Corporate cyber maturity levels

Issue 2/3 2023 News & Events, Information Security

A mere 19% of organisations in South Africa have the ‘Mature’ level of readiness needed to be resilient against today’s modern cybersecurity risks, according to Cisco’s first-ever Cybersecurity Readiness Index (www.securitysa.com/*cisco5). The index was developed against the backdrop of a post-COVID, hybrid world, where users and data must be secured wherever work is done. The report highlights where businesses are doing well and where cybersecurity readiness gaps will widen if global business and security leaders do not take action.

Organisations have moved from an operating model that was largely static – where people operated from single devices from one location, connecting to a static network – to a hybrid world in which they increasingly operate from multiple devices in multiple locations, connect to multiple networks, access applications in the cloud and on the go, and generate enormous amount of data. This presents new and unique cybersecurity challenges for companies.

Resilience in a hybrid world

Titled, Cisco Cybersecurity Readiness Index: Resilience in a Hybrid World, the report measures the readiness of companies to maintain cybersecurity resilience against modern threats. These measures cover five core pillars that form the baseline of required defences: identity, devices, network, application workloads, and data, and encompasses 19 different solutions within the pillars.

Conducted by an independent third party, the double-blind survey asked 6700 private sector cybersecurity leaders, across 27 markets, to indicate which of these solutions they had deployed, and the stage of deployment. Companies were then classified into four stages of increasing readiness: Beginner, Formative, Progressive and Mature.

Findings

Alongside the stark finding that only 19% of companies in South Africa are at the Mature stage, 52% of companies fall into the Beginner (8%) or Formative (44%) stages. While organisations in South Africa are faring better than the global average (15% of companies in the Mature stage), the number is still very low given the risks.

This readiness gap is telling, not least because 65% of respondents said they expect a cybersecurity incident to disrupt their business in the next 12 to 24 months. The cost of being unprepared can be substantial, as 57% of respondents said they had had a cybersecurity incident in the last 12 months and 17% of those affected said it cost them at least $500 000.

“The move to a hybrid world has fundamentally changed the landscape for companies and created even greater cybersecurity complexity. Organisations must stop approaching defence with a mix of point tools and instead, consider integrated platforms to achieve security resilience while reducing complexity,” said Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration at Cisco. “Only then will businesses be able to close the cybersecurity readiness gap.”

Business leaders must establish a baseline of ‘readiness’ across the five security pillars to build secure and resilient organisations. This need is especially critical given that 78% of the respondents plan to increase their security budgets by at least 10% over the next 12 months. By establishing a base, organisations can build on their strengths and prioritise the areas where they need more maturity, thereby improving their resilience.

“With highly distributed teams and devices leading to a rapidly expanding attack surface, achieving security resilience must remain a top priority. Cisco’s Cybersecurity Readiness Index provides a clear picture of what businesses have been doing to protect their operations across South Africa and, more importantly, what steps still need to be taken to deliver secure, seamless online environments,” said Conrad Steyn, CTO and Head of Engineering at Cisco Sub-Saharan Africa.

Other key findings of the index with respect to readiness across the five key pillars include:

• Identity: Progress is needed here as 62% of organisations are in the Beginner or Formative stages.

• Devices: This has the highest percentage of companies in the Mature stage at 44%.

• Network Security: Companies are lagging on this front with 53% of organisations in the Beginner or Formative stages.

• Application Workloads: This is the pillar where companies are the least prepared, with 59% of organisations in the Beginner or Formative stages.

• Data: This has the second-highest number of companies in the Mature stage (27%).




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

From prevention to protection
Securex South Africa News & Events Fire & Safety
The Western Cape’s varied landscapes and rapid urban development present a range of fire safety challenges, from densely populated city centres to remote industrial sites, and from heritage buildings to new high-rise developments.

Read more...
Workflow and asset management solutions
Asset Management News & Events
Zamatrack’s innovative workflow and asset management solutions feature the Worxit platform. This all-in-one solution allows businesses to streamline operations with real-time tracking, GPS data, and custom reports.

Read more...
SAQCC Gas awareness
Associations News & Events
SAQCC Gas will raise awareness within the gas industry by emphasising the importance of using registered gas practitioners and getting a Certificate of Compliance (CoC) for all your gas systems.

Read more...
Why Securex matters more than ever
Securex South Africa News & Events Fire & Safety Facilities & Building Management
Visitors will observe the application of integrated security solutions, including AI-enhanced surveillance, cloud-based access control, cybersecurity tools, and perimeter protection within residential, commercial, logistics, and industrial environments

Read more...
Fire Ops SA Partners with Matrix
News & Events Fire & Safety Residential Estate (Industry)
Fire Ops SA, a South African private fire and rescue service, has announced its partnership with Matrix Vehicle Tracking to launch FireStop, providing Matrix and Beame clients with direct access to a dedicated professional private fire service.

Read more...
SABRIC Annual Crime Statistics 2024
News & Events Security Services & Risk Management Residential Estate (Industry)
SABRIC has released its Annual Crime Statistics for 2024, reflecting a significant decline in financial crime losses, but also warning of the growing threat posed by artificial intelligence (AI) in fraud schemes.

Read more...
Adding AI analytics to security monitoring
SEON South Africa News & Events Perimeter Security, Alarms & Intruder Detection Residential Estate (Industry) AI & Data Analytics
SEON has announced its latest integration with Refraime, an AI-powered video analytics platform designed to elevate CCTV surveillance through real-time object detection and intelligent alerting.

Read more...
Advances in electric fence management
Nemtek Electric Fencing Products News & Events Perimeter Security, Alarms & Intruder Detection
Nemtek will demonstrate its newly enhanced FG7C+ Fence Controller, now featuring an advanced software upgrade that connects all Nemtek devices, aggregating data to a single point for efficient electric fence alarm monitoring and control.

Read more...
Fire safety in focus
Securex South Africa Fire & Safety News & Events
Firexpo Cape Town visitors will not only compare technologies side-by-side, but also connect with suppliers and experts who understand both the region’s regulatory framework and its unique environmental risks.

Read more...
Local-first data security is South Africa's new digital fortress
Infrastructure Information Security
With many global conversations taking place about data security and privacy, a distinct and powerful message is emerging from South Africa: the critical importance of a 'local first' approach to data security.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.