New research shows 1 in 3 organizations were unable to detect a breach in the last 12 months, with just 25 percent able to respond in real time, revealing a cybersecurity preparedness gap

Santa Clara, Calif. – June 18, 2024 — Gigamon, a leader in deep observability, today published its 2024 Hybrid Cloud Security Report, revealing vulnerabilities in organizations’ preparedness to defend against increasingly sophisticated cyberthreats and attacks. The annual survey of over 1,000 Security and IT leaders across Australia, France, Germany, Singapore, UK, and the USA, shows a decline in detection and response capabilities year-on-year (YoY) compared to the company’s 2023 Hybrid Cloud Security Report. As hybrid cloud environments grow in complexity and threat actors launch a barrage of concealed attacks, 65 percent of respondents believe their existing security tooling cannot effectively detect breaches.

Security and IT leaders are at a crucial juncture. The specter of AI-powered cyber attacks looms globally, with 82 percent of respondents predicting that AI will increase the global ransomware threat. And yet, despite global information security spending projected to reach $215 billion in 2024, only half (54 percent) of organizations feel “strongly prepared” to respond to unauthorized access to their hybrid cloud environments.

CISOs Turn to Boards, Prioritize Encrypted Visibility to Help Address Today’s Threats

The research also delves into the insights of 234 CISOs globally. The results highlight that CISOs continue to bear the burden of regulatory and technological pressures, with 69 percent of CISOs reporting they struggle to detect encrypted threats, compared to 59 percent of the total respondents. An alarming 70 percent of CISOs believe their tools aren’t as effective as they could be in detecting breaches, and as a result 59 percent say they would be most empowered by cyber risk becoming a boardroom priority.

Key Findings Highlight Cybersecurity Preparedness Gap

• Most organizations report critical visibility gaps. The complexity of modern hybrid cloud infrastructure contributes to organizations’ lack of control. Three-quarters of respondents agree that East-West (lateral) visibility is more important to cloud security than North-South, yet just 40 percent have visibility into East-West traffic, down from 48 percent in 2023. Encrypted traffic poses another serious blind spot. Although 83 percent describe gaining visibility into encrypted traffic as a priority, a shocking 76 percent currently trust that encrypted traffic is secure.
• Organizations are unprepared for today’s sophisticated attacks. Survey respondents generally acknowledge weaknesses in their tool stack for threat detection. Just 25 percent were able to remediate a live threat in a recent breach. When tooling fails, organizations suffer more serious consequences, with 31 percent of organizations only detecting a recent breach once they received an extortion threat from the adversary; 31 percent became aware of the breach when proprietary information leaked onto the dark web. Of greater concern is that 25 percent of respondents ultimately failed to determine the root cause of the breach.
• Deep observability is viewed as central to modern IT success. When breaches are missed, tool strategies are firmly in the spotlight. Eight in 10 agree that achieving unified visibility into hybrid cloud infrastructure is key to preventing attacks. Six in 10 believe that greater visibility into all data in motion will empower them to securely deploy AI technology. As a result, 80 percent agree that deep observability–delivering network-derived intelligence to log-based security tooling–is now a board-level priority.
• Regulation, boardroom pressure is elevating Zero Trust as a priority. Survey results show that Zero Trust has shifted from a best practice to a must-have, with 64 percent of respondents expecting a mandate in the next two years. Three-quarters report that Zero Trust is now a priority for the board. As a result, 8 out of 10 name Zero Trust as one of their key priorities over the next 18 months.

“It is clear that organizations’ tool stacks are falling short, enabling threat actors to exploit blind spots to breach and extort their victims without fear of detection,” said Chaim Mazal, CSO at Gigamon. “Consider that just 1 in 4 organizations can detect and remediate a live threat. Without real-time, network-derived intelligence and insights into all data in motion, including East-West and encrypted traffic, bad actors will continue to wreak havoc, now with AI accelerating their efforts.”

About the survey

The 2024 Hybrid Cloud Security survey was commissioned by Gigamon and fielded in collaboration with Vitreous World. The data is based on findings of an online survey of 1,033 global respondents Mar. 22- Apr. 6, 2024.

For more information

• Read more about the survey results in the blog, “Hybrid Cloud Security: The CISO Perspective”
• Review insights in the 2024 Hybrid Cloud Security Report
• Read the CISO Executive Summary
• Attend the webinar, “Hybrid Cloud Security: Closing the Preparedness Gap,” with Enterprise Strategy Group (ESG), July 10 at 10:00 a.m. PT

About Gigamon

Gigamon^® offers a deep observability pipeline that efficiently delivers network-derived intelligence to cloud, security, and observability tools. This helps eliminate security blind spots and reduce tool costs, enabling you to better secure and manage your hybrid cloud infrastructure. Gigamon serves more than 4,000 customers worldwide, including over 80 percent of Fortune 100 enterprises, 9 of the 10 largest mobile network providers, and hundreds of governments and educational organizations worldwide. To learn more, please visit gigamon.com.