A new report by Exabeam raises concerns about corporate cybersecurity strategies. Many companies prioritize preventing cyberattacks rather than detecting, investigating, and responding to them. This approach leaves them vulnerable to data breaches and other security incidents that are becoming increasingly severe.
The study surveyed 500 IT security professionals and found a clear preference for prevention. Nearly two-thirds of respondents identified it as the primary goal of their endpoint security measures. This focus on prevention is reflected in budget allocation as well, with almost three-quarters of companies dedicating a significant portion (21% to 50%) of their IT security budget to preventive tactics.
However, Exabeam’s chief security strategist, Steve Moore, points out a critical flaw in this approach. Companies are putting all their effort into stopping attackers who may already be inside their systems. “The key question,” says Moore, “isn’t whether there are attackers in the network, but how many there are, how long they’ve had access, and what damage they’ve caused.”
The report also reveals a gap between confidence and reality. While a large majority of respondents (97%) expressed confidence in their tools and processes for preventing breaches, only 62% felt comfortable assuring their superiors that no breaches had occurred. This discrepancy suggests overconfidence among security teams. Exabeam further strengthens this argument by citing industry data indicating that 83% of organizations experienced multiple data breaches in the past year.
The report underscores the need for a more balanced approach to cybersecurity. While prevention remains important, companies need to invest in robust detection, investigation, and response capabilities. This will enable them to effectively identify and contain breaches, minimizing the damage caused by these inevitable security incidents.
