Virtualization Technology News and Information
60% of Enterprise Have Little Confidence in Managing Attack Surface Risk Due to Hybrid Workplace, Multi-cloud, and Digital Business Growth

Oomnitza revealed a new survey, "The 2022 Attack Surface Management Maturity Report" conducted by Cybersecurity Insiders, which found that most enterprises (60%) have low confidence in their ability to manage attack surface risk. The majority of respondents felt that their organization had poor asset inventory intelligence, which impacts security posture improvement.

According to a February 2022 Gartner report, "Organizations need to look beyond vulnerability patching to manage a wider set of security ‘exposures.' A dramatic increase in attack surface is emerging from changes in the use of digital systems, including new hybrid work, accelerating use of public cloud, more tightly interconnected supply chains, expansion of public-facing digital assets and greater use of operational technology."*

In a rapidly changing technology environment where cybersecurity leaders are now dealing with a hybrid workplace, hybrid cloud, and digital business growth, the ability to manage cyber risk has become more challenging. In fact, Oomnitza's report found that while 64% of organizations support a hybrid workplace, more than half (53%) witnessed their remote workforce deviating from security policy. In addition, 80% of organizations are pursuing hybrid or multi-cloud infrastructure strategies while experiencing compliance, infrastructure, and misconfiguration visibility and control automation issues.

When it comes to enterprise technology management, 40% of organizations have visibility of only 50-75% of their assets with inconsistent inventory, ownership, type, and lifecycle state information. In response to a changing technology and threat landscape, 46% plan to move to a platform approach to secure their IT estate.

"We are pleased that our report shares current attack surface management trends, challenges and issues, and where organizations can mature capabilities, " said Arthur Lozinski, CEO and Co-Founder of Oomnitza. "Clearly organizations must consider how to better leverage their endpoint, application, network infrastructure, cloud, and security management tools to improve their security posture and cyber resilience - highlighting the need for a platform approach to enterprise technology management."

The Attack Surface Management Maturity report, compiled from a survey of 351 qualified respondents, was independently produced by Cybersecurity Insiders, a 500,000 member online community of information security professionals. Other key findings of the report include:

  • More than half of organizations (60%) have low confidence in their ability to manage attack surface risk. In addition, over the past 12 months, nearly a third experienced security issues that resulted in reduced worker productivity and reduced business activity, with 21% experiencing increased incident response expenditure
  • 84% of organizations lack a unified view of the hybrid IT security posture, while 55% of respondents showed poor asset inventory intelligence and 70% expressed moderate patch management efficacy
  • Nearly two-thirds indicated they have had asset inventory management issues concerning network infrastructure, malware, and configuration compliance
  • Security leaders and practitioners are undecided (39%) whether it comes to replacing siloed management tools. The response appeared to favor (46%) incorporating a centralized platform to progress their attack surface management capabilities while keeping existing IT tools for managing specific technologies

To download the survey infographic, please visit The full report is available here.

Published Tuesday, June 21, 2022 9:48 AM by David Marshall
Filed under: ,
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<June 2022>