The SANS Institute, one of the premier cybersecurity research firms, recently released a whitepaper entitled “Breach Avoidance: It Can Be Done, It Needs to Be Done.” The report was sponsored by Balbix and written by John Pescatore. Its thesis stands as one of the most optimistic in all of cybersecurity: most data breaches are avoidable.
The key findings from this SANS data breach whitepaper include:
- In the first 203 days of 2018, 668 data breaches were publicly disclosed in the U.S.A. Obviously, this number does not reflect the breaches not reported to the public.
- At the current rate of breaches (3 per day), 1,200 breaches in all will occur this year.
- Of the 18,000 enterprises in the U.S.A. with at least 500 employees, 17,000 companies will have avoided a major data breach this year.
- The number of breaches in 2018 is on pace to match 2017.
- The number of records exposed in 2018 is poised to be 66% less than 2017.
How are enterprises avoiding data breaches? According to SANS, part of the key is proactive cybersecurity protocols. Threat hunting, threat intelligence, and threat detection as embodied in SIEM and security analytics solutions can be key capabilities in becoming proactive. However, SANS also points out good proactive activity and attention as necessary as finding a good solution.
Adding layers to your cybersecurity policy can only create confusion and disruption. It’s more important to form a strong digital security team and find a good solution to enhance their efforts.
You can download the full SANS “Breach Avoidance: It Can Be Done, It Needs to Be Done” whitepaper here.
Latest posts by Ben Canner (see all)
- Revisiting Whether SOAR Will Replace SIEM in Business Cybersecurity - May 29, 2020
- Changing SIEM From Reactive to Proactive with Threat Hunting - May 27, 2020
- Top-Down SIEM: An Interview with Avi Chesla of Empow - May 21, 2020