International. Every day new security incidents come to light and new IT security regulations emerge – the pressure on companies to prioritize IT security is increasing.
This is reflected in the resources they are investing in information and cybersecurity. Although, globally, only 37% of IT and cybersecurity specialists surveyed were satisfied with the above last year, the figure in this year's "OTRS Spotlight: Corporate Security 2024" study is 44%.
Among those who are dissatisfied, most would like to see more investment in software and security training (27% each), followed by a desire for more funding for infrastructure (26%). 21% mention the need
to have more personnel.
For the study, software company OTRS Group, in collaboration with market research firm, Pollfish, interviewed 476 IT and cybersecurity professionals, including 100 from Mexico.
More security tools and new challenges
In parallel with satisfaction with information and cybersecurity teams, the use of various instruments in the IT professionals' suite of security tools has also increased in Mexico. Vulnerability management systems, SIEM (Security Information and Event Management) and SOAR (Security, Orchestration, Automation and Response) software are actively used by more respondents than the previous year (+40%, +37% and +12%, respectively).
Those who already use SOAR software (56%) consider the biggest advantages for their SOC (SOC Center) to be the most important advantages for their SOC.
Security Operations) are that
- Simplifies work with IT (65%).
- Improves automation of their incident response processes (56%).
- It protects them from future incidents (54%).
However, the growing number of software solutions and tools currently in use is not only a relief for security teams.
Managing and maintaining them comes with its own challenges: Mexican respondents mainly complain about the complexity of the tools (53%) and integration difficulties (45%). The training requirements involved in the new tools (36%), as well as resource constraints (33%), are considered for many challenges
important when handling multiple tools. Despite all this, three-quarters (76%) are satisfied or very satisfied with the integration and interoperability of their current security tools.
AI trends and regulatory pressures influence software choice When selecting new software solutions for information and cybersecurity, respondents in Mexico seem to feel, on the one hand, the effects of the continuing trend towards artificial intelligence (AI) and, on the other, the pressure of regulations. Compliance and security, reporting and analytics, and integrated AI functions occupy the top three selection criteria (53%, 49%, and 48%, respectively). Functionality (43%), as well as usability (38%) are in fourth and fifth place respectively. On the other hand, costs are only among the most important criteria for a third of respondents (34%), while local availability is only relevant for 14%.
Jens Bothe, Vice President of Information Security at OTRS Group, said: "The fact that more decision-makers are recognising the economic importance and value of IT security and preparing their teams with the right resources is a very welcome development, although it took a long time to arrive."
However, the survey results also clearly show the obstacles on the way to a higher level of security in companies. For one, not all organizations prioritize IT security enough. In many cases, financial and human resources are lacking.
On the other hand, software solutions for security teams must not only be easier to use and integrate, but must also increasingly support compliance with regulatory requirements, as well as the acceleration and automation of measures and processes; for example, through AI functionalities. If
By meeting all of these factors, security teams have a real opportunity to protect their organizations against the extensive damage caused by pervasive threats and vulnerabilities.
