Commvault presents five key pillars that help companies recover faster from a cyberattack.

A study conducted by Commvault in collaboration with research agency GigaOm identifies five pillars that help companies recover faster after a cyberattack. For example, the study showed that cyber-mature companies that had at least four of the five pillars recovered 41 percent faster than respondents with none or only one pillar.

The 2024 Cyber ​​Recovery Readiness Report is based on a global survey of 1,000 security and IT professionals in 11 countries and addresses a fundamental question: “What can organizations do to increase their resilience to cyberattacks?”

Five pillars

Research from Commvault and GigaOm uncovers five core aspects that they call the pillars of resilience. According to the study, companies that leveraged these pillars recovered faster from cyberattacks and were less likely to experience incidents than companies that did not embrace these pillars.

1. Security tools that provide early warning of cyber risks, including insider attacks.
2. The availability of a known clean shade site or secondary system.
3. An isolated environment for storing immutable backups.
4. Clearly defined incident response playbooks, roles and processes.
5. Specific measures that provide insight into risks and recovery readiness.

Cyber ​​maturity

When evaluating the survey results, only 13 percent of respondents could be classified as cyber mature. Cyber ​​mature organizations that had at least four of the five pillars mentioned above recovered 41 percent faster than respondents with no or only one pillar. In addition, companies with cyber maturity report fewer security incidents compared to companies that have fewer than four indicators.

In addition, 54 percent of all cyber-mature organizations are fully confident in their ability to recover from a security incident, compared to just 33 percent of less prepared organizations. Finally, conducting tests regularly makes a big difference. 70 percent of all cyber-mature organizations tested their recovery plans quarterly, compared to 43 percent of organizations with no or only one pillar of resilience.

“It is critical that organizations take a layered approach to cyber resilience. Currently, less than 85 percent of respondents do so. This must change quickly if organizations want to be resilient against cybercriminals,” said Howard Holton, CTO of GigaOm.