SAN JOSE, Calif.–(BUSINESS WIRE)–Trellix, the cybersecurity company driving the future of extended detection and response (XDR), today released a global cybersecurity readiness report assessing the adoption of the technology and perceptions of government leadership in cybersecurity with respect to cybersecurity standards and cooperation between the public and private sectors.
The Trellix report shows 87 percent of respondents from the NATO countries of Germany, France and the United Kingdom believe that formal government-led initiatives can play an important role in improving their country’s protection against cyber threats. Respondents in these countries see opportunities to improve their partnerships with government in areas such as cyber defense coordination, threat intelligence sharing, and software supply chain integrity.
The study, based on research conducted globally by Vanson Bourne, surveyed 900 cybersecurity professionals from organizations with 500 or more employees, including 200 respondents in the three European NATO countries of the Germany, the United Kingdom and France.
“Global tensions and cyber warfare incidents in Ukraine reinforce our focus on government and critical infrastructure cyber preparedness,” said Bryan Palma, CEO of Trellix. “Our report assesses the progress of implementing new technologies, such as XDR. It also identifies areas of opportunity for stronger public-private partnerships, where increased coordination will allow us to stay ahead of our adversaries.
Adoption of cybersecurity technologies. Among German respondents, cybersecurity modernization in the cloud appears to be the most advanced in implementation. Forty percent say they have fully implemented leading-edge technology in this area, while only 27% appear to have fully implemented endpoint detection and response and extended detection and response (EDR-XDR) capabilities.
Among UK respondents, 37% said they have fully implemented EDR-XDR and cloud cybersecurity modernization, while multi-factor authentication (MFA) and zero trust appear to be lagging behind.
Forty-seven percent of French respondents said they had fully deployed MFA, which apparently puts the French ahead in this area compared to their British and German counterparts.
Software supply chain risk. The majority (82%) of global respondents believe software supply chain risk management policies and processes are of high or critical importance to national security.
Seventy-six percent of UK respondents said these policies and processes were extremely or very difficult to implement, and only 39% said they had fully implemented these practices.
Sixty-three percent of German respondents and 58% of French respondents identified these policies and processes as difficult to implement. Only 40% of Germans and 36% of French acknowledge that they fully implement such measures.
European respondents agree that software security standards would improve across the software industry if their governments demanded higher software security standards within government implementations. But only 56% of German respondents, 51% of UK respondents and 48% of French respondents support government mandates requiring cybersecurity standards for the entire software industry.
Cyber skills challenges. While survey respondents identified a variety of barriers to implementing advanced technologies, a shortage of cybersecurity talent was revealed in all three countries. Forty-eight percent of German respondents, 41 percent of UK respondents, and 35 percent of French respondents identified a lack of internal cyber skills as a major challenge to their implementation efforts. About a third of each group also identified a lack of implementation expertise as a key barrier. These results reflect cybersecurity skills shortages in the United States and Asia-Pacific.
Palma continued: “The cyber skills gap is well known; the report points out that the deficit is stifling the deployment of cybersecurity technology. Whatever innovation advantage the United States and its allies think we have is irrelevant if we cannot implement the solutions.
Public-private partnerships. Ninety-five percent of German and French respondents and 86% of UK respondents believe there is room for improving the level of cybersecurity partnerships between their national governments and organisations.
Fifty-two percent of UK respondents, 46% of German respondents and 35% of French respondents favor a combination of incident notification and liability protection to facilitate the sharing of cyberattack data between affected organisations, government partners and industry audiences. Forty-four percent of UK respondents and 41 percent of German and French respondents favor closer cooperation on cyber incident management as cyber attacks and campaigns are ongoing.
In terms of the types of data the government should share to help organizations better protect themselves, almost two-thirds (60%) of UK respondents would like to receive more data on ongoing cyberattack campaigns. Around half of German respondents said they would like to receive more information about the different cybercrime and threat actor groups. Fifty-eight percent of French respondents say data on cybersecurity vulnerabilities would be preferred over other types of data.
Trellix is a global company redefining the future of cybersecurity. The company’s open, native Extended Detection and Response (XDR) platform helps organizations facing today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with a broad ecosystem of partners, accelerate technology innovation through machine learning and automation to empower more than 40,000 commercial and government customers. More at https://trellix.com.