Lack of budget Is the biggest security challenge for small organisations

They face the same security threats as organisations overall but have less resources to address them.

  • 1 year ago Posted in

Netwrix has publoished additional findings from its survey conducted in February 2023 among security and IT professionals from 106 countries. The additional information is for organisations with less than 100 employees.

 

According to the survey, small organisations experience the same cyberthreats as the respondents overall. The most common security incidents are phishing, ransomware, and user account compromise. However, smaller organisations usually have less resources and experience with which to address security threats. Indeed, lack of budget is their top security challenge, reported by one in two small companies.

 

“Cost efficiency is top of mind for small organisations. To improve their security posture, these organisations may want to seek out solutions that are tuned for the unique cost and security needs of small businesses. In addition, partnering with a vendor that offers multiple solutions is a way to get a larger discount for using several tools,” says Dirk Schrader, VP of security research at Netwrix.

 

When we asked IT pros what they would do to improve the security posture of their small organisation if they had a chance to decide on their own, their top choice was IT staff training.

 

“One option for addressing the lack of cybersecurity expertise is to consider outsourcing security-related tasks to a managed service provider (MSP) or managed security service provider (MSSP). This approach not only eliminates the need to hire additional internal IT talent but can also reduce the cost of maintaining security software. For example, if a new compliance requirement arises, the MSP can make the necessary changes once, implement them across their customer base, and share the cost of the customisation among those clients,” says Dmitry Sotnikov VP of product management at Netwrix.

 

More than two-thirds (68 percent) of small organisations have a hybrid IT architecture. Interestingly, only 45 percent of the small organisations that are exclusively on-premises plan to adopt cloud technologies, compared to 69 percent among respondents overall.

 

“On one hand, there are a lot of cloud-native small businesses, born when cloud was already an integral part of the IT landscape. On the other hand, many small organisations made significant investments into their on-premises infrastructure and may not have the budget or resources to then migrate to the cloud,” says Dirk Schrader.

 

“Lack of experience and fear of moving to the cloud can also hinder cloud adoption in small organisations. To benefit from the greater flexibility that comes from transferring some security-related tasks to a cloud provider, smaller organisations can engage an MSP to map the most effective cloud migration path for their business and consider using security tools that cover both on-premises and cloud infrastructure,” says Dmitry Sotnikov.

Predictive maintenance and forecasting for security and failures will be a growing area for MSPs...
Venafi has published the findings of its latest research report: The Impact of Machine Identities...
Arctic Wolf to enhance its Security Operations Aurora Platform with best-in-class endpoint...
Nearly 50% of organisations have experienced a security breach in the last two years.
New study by Splunk shows that a significant number of UK CISOs are stressed, tired, and aren’t...
HP Wolf Security Study highlights cybersecurity challenges facing organizations across the...
Internal test shows estimated scanning speeds of 75,000 backups within 60 seconds.
Deployment allows Korea Hydro and Nuclear Plant (KHNP) to leverage quantum-safe MACsec technology...