SAN FRANCISCO – SenSage has announced the results of an industry survey on security management practices taken during last month’s RSA Conference. The survey of 360 security professionals identifies several weaknesses in respondents’ log management, compliance reporting, real-time monitoring, forensic investigation and incident response processes.

Fifty-two percent involve only one or two groups in security management processes.

Fifty-eight percent report that their security management processes have no coordination or only reactive triage across teams.

Sixty-nine percent state that they do not consistently measure these processes for results.

All of these weaknesses contribute to an alarming report card for security management. Addressing stakeholders’ perceptions of the effectiveness of these processes, only 39 percent of respondents estimate they are perceived as “effective” or “very effective” whereas 61 percent estimate they are perceived as “ineffective” or “somewhat effective.”

“Our survey reveals that many security management teams lack the coordination and planning necessary to adequately protect their organizations from increasingly complex cyber attacks,” said Joe Gottlieb, vice president of marketing and business development at SenSage. “SenSage Security Intelligence solutions and services help enterprises consolidate and simplify their SIEM and log management processes and infrastructure, so that they are more effective for distributed personnel serving a variety of security and audit functions.” The survey also found that forty-two percent of respondents utilize four or more different products to address their log management, compliance reporting, real-time monitoring, forensic investigation and incident response requirements. A slight majority of respondents (53 percent) state that they consistently improve these processes; yet 66 percent state that these process improvement initiatives are understaffed.

These survey findings indicate that the majority of today’s security management efforts could be improved to be more effective against increasingly sophisticated cyber-threats. The SenSage Security Intelligence solution for unified SIEM, log management and forensic investigations strengthens organizations’ ability to identify security threats before they become problems. It also helps streamline processes via a single console with role-based access that supports coordinated processes involving security policy planning, security operations, IT operations, risk management, audits and compliance teams. This unified approach helps companies train, coordinate and measure security management processes that must span multiple disciplines, departments and locations to be effective.

This column was written by Mark Cox of ConnectIT, an IntegratedMar.Com

a>>