Organization Ability to Detect Cyber Incidents

Organization Ability to Detect Cyber Incidents

Proof Point

Service interruption attacks (e.g. web, application, denial of service, and network attacks) more detectable than internal risks, according to Ponemon Institute’s survey of IT practitioners

Organization Ability to Detect Cyber Incidents

2016 (percentage of respondents)

Note: Data based on Ponemon Institute’s 2016 Big Data Cybersecurity Analytics Research Report, which surveyed 592 IT and IT security practitioners in U.S.

Proof Point Findings

  • Cybersecurity Incident – Malicious or suspicious act that threatens security, confidentiality, integrity, and availability of critical cyber assets, information systems, and networks
  • Identifiable Cybersecurity Risks – Companies most adept at detecting service interruption attacks, such as web-based attacks (67%), application-level attacks (63%), denial of service (56%), and network threats (54%)
  • Less Detected Threats – Companies less likely to detect system insider attacks, such as rogue users (30%) and malicious insiders (15%)
  • Key Drivers – Include proliferating and increasing sophistication of cybersecurity threats, as well as heightened demand for cybersecurity professionals in firms



Information Technology


Date Last Updated

August 15, 2017

Leave a comment