Survey: Some IT managers need to learn to share

When threats are discovered, many IT pros go into red alert mode, gathering their teams and sharing the discovery. Then there are those who sit on the information, preferring to keep this critical info to themselves. 

An AlienVault survey, Threat Intelligence Survey and the Government’s Role in It, finds that most organizations are OK with reporting and sharing information on threats they’ve discovered – to a point.

Respondents reported that they primarily share this info with:

  • internal team members (43%)
  • trusted peers in a closed community (40%), and
  • government agencies (20%).

Some (8%) even go all out, sharing the information publicly.

But a few tight-lipped IT pros go the opposite route and keep things to themselves. Ten percent of respondents said that if they discover a threat, they don’t share the information with anyone at all.

What’s troubling IT

Regardless of whether or not they share threats, IT does have serious concerns.

The top three concerns about threats were no real surprise. They were worried about:

Other concerns included state-sponsored attacks (30%) and just troublemakers with nothing better to do with their time (23%).

Find a balance

Most organizations can’t be entirely transparent with their threat detection. Publicly acknowledging breaches could weaken security by signaling to others outside the organization that you’re vulnerable to attack.

But threats should be shared with at least some members of your team or organization.

Be sure to have a plan that includes:

  • who will be notified when threats are discovered
  • how they will be notified, and
  • what the roles of the response team will be.

That ensures that the aftermath of a discovery isn’t catching anyone by surprise and that you’ll be able to recover more quickly in the event of a breach.

Make Smarter Tech Decisions

Get the latest IT news, trends, and insights - delivered weekly.

Privacy Policy