Connect with us

Hi, what are you looking for?

HEADLINES

McAfee report finds automation, use of gamification as key to winning against cybercriminals

The landscape for cyberthreats is growing, both in complexity and volume. According to the report, 46 percent of respondents believe that in the next year they will either struggle to deal with the increase of cyberthreats or that it will be impossible to defend against them.

McAfee, the device-to-cloud cybersecurity company, released Winning the Game, a new report investigating key challenges facing IT security organizations in terms of threats, technology investment and skills required to win the fight against cyberthreats. The survey revealed that concerted efforts to increase job satisfaction, automation in the Security Operations Center (SOC) and gamification in the workplace are key to beating cybercriminals at their own game.

The landscape for cyberthreats is growing, both in complexity and volume. According to the report, 46 percent of respondents believe that in the next year they will either struggle to deal with the increase of cyberthreats or that it will be impossible to defend against them. Further complicating the dynamics of the competition between security responder and cybercriminal is the cybersecurity skills crisis. Survey respondents believe they need to increase their IT staff by nearly a quarter (24 percent) in order to manage the threats their organizations are currently facing, while 84 percent admit it is difficult to attract talent and 31 percent say they do not actively do anything to attract new talent.

“With cybersecurity breaches being the norm for organizations, we have to create a workplace that empowers cybersecurity responders to do their best work,” said Grant Bourzikas, chief information security officer at McAfee. “Consider that nearly a quarter of  respondents say that to do their job well, they need to increase their teams by a quarter, keeping our workforce engaged, educated and satisfied at work is critical to ensuring organizations do not increase complexity in the already high-stakes game against cybercrime.”

Automation

Advertisement. Scroll to continue reading.

The growing threat landscape and recruitment and retention challenges facing the cybersecurity workforce demand automation as a key ingredient in the game against cyberattackers. By pairing human intelligence with automated tasks and putting human-machine teaming in practice, automated programs handle basic security protocols while practitioners have their time freed up to proactively address unknown threats.

  • Eighty-one percent believe their organization’s cybersecurity would be safer if it implemented greater automation
  • A quarter say that automation frees up time to focus on innovation and value-added work
  • Nearly a third (32 percent) of those not investing in automation say it is due to lack of in-house skills

Gamification

Gamification, the concept of applying elements of game-playing to non-game activities, is growing in importance as a tool to help drive a higher performing cybersecurity organization. Within organizations that hold gamification exercises, hackathons, capture-the-flag, red team-blue team or bug bounty programs are the most common, and almost all (96 percent) of those that use gamification in the workplace report seeing benefits. In fact, respondents who report they are extremely satisfied with their jobs are most likely to work for an organization that runs games or competitions multiple times per year.

  • More than half (57 percent) report that using games increases awareness and IT staff knowledge of how breaches can occur
  • Forty-three percent say gamification enforces a teamwork culture needed for quick and effective cybersecurity
  • Three-quarters (77 percent) of senior managers agree that their organization would be safer if they leveraged more gamification

The Next Generation of Cyberthreat Hunters

To address the shortage skilled cybersecurity workers, the report findings suggest that gamers, those engaged and immersed in online competitions, may be the logical next step to plugging the gap. Nearly all (92 percent) of respondents believe that gaming affords players experience and skills critical to cybersecurity threat hunting: logic, perseverance, an understanding of how to approach adversaries and a fresh outlook compared to traditional cybersecurity hires.

  • Three-quarters of senior managers say they would consider hiring a gamer even if that person had no specific cybersecurity training or experience
  • More than three quarters (78 percent) of respondents say the current generation entering the workforce, who have been raised playing video games, are stronger candidates for cybersecurity roles than traditional hires
  • Seventy-two percent of respondents say hiring experienced video gamers into the IT department seems like a good way to plug the cybersecurity skills gap

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

White Papers

When compared to 2023, Sophos saw a 51% increase in abusing “Living off the Land” binaries or LOLbins; since 2021, it’s increased by 83%.

HEADLINES

Someone illegally acquires or uses personal information such as bank account or credit card numbers of another person to obtain money, goods or services....

HEADLINES

To stay ahead of these challenges, organizations need to invest in AI-driven defenses, transition to quantum-safe encryption, and adopt a Zero Trust approach to...

HEADLINES

There was a 121% Year-on-Year (YoY) increase in identity fraud in 2024 across the region, with significant surges recorded in Singapore (207%), Thailand (206%)...

White Papers

The survey found that CXO’s feel less prepared than their global peers. Less than half or 48% in APAC said they felt completely prepared...

HEADLINES

On average, a single organization in the Philippines experiences 4,003 attacks per week, significantly higher than the APAC average of 2,870 attacks per week.

White Papers

Exploiting this vulnerability, cybercriminals craft deceptively authentic phishing emails that align with current trends, exploiting human emotions to invoke urgency and trick recipients into...

HEADLINES

As the year 2024 draws to a close, cybersecurity solutions provider Fortinet unveiled predictions that expect hackers will leverage as well as trends that...

Advertisement