3. Take a multi-functional approach to building resilience
True organizational resilience lies not only with the security team’s crucial efforts to improve threat detection and incident response, but through holistic collaboration. Across organizations, resilience has been strongest with a collaborative approach in which everything — from software development and infrastructure monitoring to business continuity planning — brings security leaders to the table with IT and business executives to protect the organization.
Security teams seen as enablers to the business more often report their organization has a formal approach to cyber resilience, instituted organization-wide (32% versus 19%); they are also 2.5x as likely (32% versus 13%) to note that their security operations team is collaborating with “all” adjacent functional areas included in the survey — ITOps, app dev, observability and digital experience.
We’ve provided some of the important steps necessary for your organization to face cybersecurity threats. The increased and collaborative focus on resilience in particular is noteworthy. While investing in resilience seems like a reactive, rather than proactive, strategy because it focuses on what you do in the aftermath of an incident, we would argue that it’s actually proactive. Things like risk assessment, incident response planning, key investments in technology and training, and more are crucial ingredients for building resilience that will help your organization be prepared when the inevitable happens.
For more on resilience and the state of cybersecurity, read The State of Security 2023 in full.