Around 98% of Chief Information Security Officers (CISOs) encounter significant obstacles when acting on threat intelligence, a new study has found. According to the survey conducted by cybersecurity company Trellix, the primary challenges identified include keeping up with evolving threats (45%), dealing with integration issues (39%), and navigating regulatory constraints (38%). These hurdles often result in threat intelligence being a reactive element rather than a proactive strategy aimed at enhancing resilience, speeding up responses, and staying ahead of emerging threats.
Trellix’s report is based on insights from more than 500 CISOs from regions including the Americas, Europe, the Middle East, and Asia Pacific. Respondents represented a range of industries such as finance, public sector, healthcare, manufacturing, energy, oil, gas, and utilities. Vanson Bourne, an independent market research agency, conducted the study.
It highlights that nation-state threats are a significant concern for CISOs, with 89% frequently facing inquiries from their CEOs and boards about these threats. This scrutiny impacts both cybersecurity strategies and budgets, with 85% of organisations’ budgets and 87% of their strategies influenced by the prevalence of nation-state threats.
Nearly all (94%) of CISOs recognise the importance of threat intelligence in identifying and mitigating cybersecurity risks. Many admitted that their organisations need improvements in how they collect (82%), analyse (78%), incorporate (79%), and monitor (80%) threat intelligence. Only 44% of organisations have adopted a proactive approach, in contrast to the 56% that remain reactive.
“Global threat detection volume from APT actors rose 45% at the beginning of this year, and CISOs are now tasked with staying ahead of these adversaries who are becoming more organised, well-resourced, and faster, partially due to the growing use of AI,” said Trellix’s Threat Intelligence head, John Fokker. “Moving beyond a traditional tactical approach to utilising operational threat intelligence allows CISOs to better understand the behaviours and objectives of threat actors, anticipate potential threats, and proactively prepare defence strategies.”
Study highlights AI and automation’s role in boosting cybersecurity
The research underscores the potential benefits of AI and automation in enhancing cybersecurity efforts. About a third of CISOs believe that AI-driven analytics (33%) and higher levels of automation (37%) could improve their operational effectiveness. However, 28% report that limited automation hampers the integration of tools into their threat intelligence programmes.
Furthermore, the study emphasises the importance of collaboration and information sharing among security professionals. A notable 95% of CISOs agree that participating in a threat intelligence sharing network enhances their threat preparedness. Additionally, 89% believe that a dedicated CISO community would facilitate better decision-making through shared insights and experiences.
Read more: 97% of CISOs prioritise Zero Trust strategies amid escalating cyber threats, study finds
