G DATA study shows that antivirus protection remains the most common IT security measure
When it comes to securing their IT systems, German businesses do not rely solely on antivirus software – even though this is the most commonly implemented measure. This is shown by the representative study “Cybersicherheit in Zahlen” conducted by G DATA CyberDefense, Statista and brand eins. Almost 43 per cent of the companies surveyed use managed security services, thereby employing a modern defence strategy against cyberattacks. Furthermore, more than half of IT experts have contingency plans and drills in place for emergencies and conduct security awareness training. Many companies are on the right track, but there is still a significant need for action.
Defending against cyberattacks is a complex task. Ideally, it consists of several effective and coordinated components. Two in five companies use managed security services, such as a managed security operations centre. This is shown by the study “Cybersicherheit in Zahlen”. This provides IT managers with a good solution to several problems at once: they have effective protection against cybercriminals, resolve their skills shortage issue and outsource this important task to an external specialist.
“The study shows that many companies are taking a broader approach to cybersecurity and increasingly relying on external support – an important step in the right direction. Traditional antivirus protection remains important, but is only truly effective when combined with clear processes, contingency plans and reliable support in the event of an emergency. It is now crucial to establish cybersecurity as an ongoing management priority”, says Andreas Lüning, co-founder and CEO of G DATA CyberDefense AG.
However, antivirus protection plays the most significant role in the security architecture of German companies, accounting for almost 70 per cent. Due to changing attack vectors and strategies, this is only effective if it is supplemented by other appropriate components. More than half of those surveyed rely on contingency plans and drills, as well as security awareness training for their staff.
Incident Response Retainers are rarely usedIn many companies, preparations for emergencies do not go far enough: whilst contingency plans and drills are the second most common cybersecurity measure implemented, only one in five companies has a framework agreement for the deployment of an IT incident response team (IRR – Incident Response Retainer). Yet this is essential in the event that a cyberattack is successful. In such cases, rapid and expert assistance is crucial to limit damage and restore IT systems as quickly as possible. With a framework agreement, companies have direct access to expert support from IT security specialists.
Cybersicherheit in Zahlen: Download“Cybersicherheit in Zahlen” has now been published for the fifth time and is characterised by a high density of information and particular methodological rigour: more than 5,000 employees in Germany were surveyed as part of a representative online study on cybersecurity in both professional and private contexts. The experts at Statista closely monitored the survey and, thanks to a sample size far exceeding the industry standard, are able to present reliable and valid market research findings in the “Cybersicherheit in Zahlen” magazine. Furthermore, the market researchers have compiled figures, data and facts from more than 300 statistics into a comprehensive reference work on IT security.
You can download “Cybersicherheit in Zahlen” here.