Trustwave SpiderLabs Uncovers Critical Cybersecurity Vulnerabilities Exposing Manufacturers to Costly Attacks. Learn More

Request a Demo

Trustwave SpiderLabs Uncovers Critical Cybersecurity Vulnerabilities Exposing Manufacturers to Costly Attacks. Learn More

Request a Demo
Services
Capture
Managed Detection & Response

Eradicate cyberthreats with world-class intel and expertise

twi-cloud-lock-color-svg
Managed Security Services

Expand your team’s capabilities and strengthen your security posture

twi-briefcase-color-svg
Consulting & Professional Services

Tap into our global team of tenured cybersecurity specialists

twi-dashboard-color-svg
Penetration Testing

Subscription- or project-based testing, delivered by global experts

twi-database-color-svg
Database Security

Get ahead of database risk, protect data and exceed compliance requirements

twi-email-color-svg
Email Security & Management

Catch email threats others miss with layered security & maximum control

twi-managed-portal-color
Co-Managed SOC (SIEM)

Eliminate alert fatigue, focus your SecOps team, stop threats fast, and reduce cyber risk

View All Trustwave Services
Solutions
BY INDUSTRY
BY REGULATION
BY TOPIC
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
The Trustwave Approach
A focus on threat detection and response
Awards and Accolades
Recognition by analysts and media outlets
Trustwave SpiderLabs Team
Researchers, ethical hackers and responders
Trustwave Fusion Platform
Unprecedented security visibility and control
SpiderLabs Fusion Center
Our cybersecurity command center
Security Operations Centers
Distributed worldwide defense nodes
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Register
Login
Resources
BLOGS
UPCOMING
MEDIA & ASSETS
NOTICES
HELP
Perspectives

CISOs Are Already Awake at Night – But What Can You Do About It?

July 11, 2018 1 minute read Dan Kaplan

Scour the World Wide Web for articles on what keeps CISOs up at night, and you'll return a list so long, you could be up all night reading it.

It's one of the most frequently asked questions in business, and when it is posed to already-pressured security professionals, it comes across as, pardon the pun, a bit tired. Perhaps a more apt way to frame the question is: "What doesn't keep CISOs up at night?

Indeed, from implacable threats to boardroom demands to skills shortages, it's no surprise the pangs of the overwrought infosec practitioner carry over from office to bedroom. The first step to recovery may very well be acceptance. You should feel no shame admitting your internal team is unable to handle all of the tasks and challenges on their plate.

Managed security services have become a popular alternative for resource-starved businesses, from those struggling to stay afloat in general to those deficient in certain specialized areas.

In fact, our recently released 2018 Security Pressures Report from Trustwave asked 1,600 global security decision-makers and influencers to choose why they do or would consider partnering with an MSSP (with the option to select as many reasons as they'd like).

Here's what they said:

  1. To compensate for in-house skills shortages. (31%)
  2. To adopt, deploy and operate hard-to-use security technologies. (30%)
  3. To help with security automation. (28%)
  4. To provide intelligence and extend security coverage against sophisticated threats. (27%)
  5. To address complex security tasks, like vulnerability testing and incident response. (25%)
  6. To handle routine tasks. (23%)
  7. To stretch budgets. (21%)
  8. To free up time to work on IT projects that got delayed by unresolved security issues. (16%)
  9. To gain more visibility into the IT environment. (10%)

The ultimate goal for a business is to ensure it is adequately assessing and mitigating risk, implementing the right processes and controls to deal with existing issues, and properly planning for what is to come in an ever-evolving threat landscape.

Though rare, a fully mature, forward-thinking internal security team can get you there. So, too, can a well-rounded, 24x7 and intelligence-driven MSSP adept at protecting, detecting and responding.

Or a combination of the two.

If more restul nights come as a result, consider it icing on the cake

Dan Kaplan is manager of online content at Trustwave and a former IT security reporter and editor.

Latest Trustwave Blogs

Unlock the Power of Your SIEM with Co-Managed SOC

Security information and event management (SIEM) systems play a pivotal role in cybersecurity: they offer a unified solution for gathering and assessing alerts from a plethora of security tools,...

Read More

Trustwave SpiderLabs: LockBit 3.0 Ransomware Most Common Malware Used to Attack the Manufacturing Sector

As the manufacturing sector continues its digital transformation, Operational Technology (OT), Industrial Control Systems (ICS), and Supervisory Control and Data Acquisition (SCADA) are becoming...

Read More

Trustwave’s Observations on the Recent Cyberattack on Aliquippa Water Treatment Plant

The attack last week on the Municipal Water Authority in Aliquippa, Penn., that gave threat actors access to a portion of the facility’s pumping equipment has spurred the Cybersecurity &...

Read More