Techaisle Blog

A recent update from CrowdStrike caused a widespread outage, termed the largest in history. The IT outage highlighted the vulnerability of SMBs to large-scale tech outages and their dependence on third-party IT services. It also underscored the need for better preparedness and potentially more diverse IT ecosystems to mitigate such risks in the future. Cybercrime is predicted to cost $14.57 trillion globally in 2024, and it would be the world's third-largest economy after the US and China. This underlines the importance of robust cybersecurity. The incident raises a concerning question: what happens when the guardians become the source of disruption? The CrowdStrike-related outage was not caused by a cyberattack, but rather by a defect in a software update, highlighting the importance of operational resilience beyond just cybersecurity measures. Analysts estimate the global cost of this outage to be as high as $24 billion as of now.

Uneven Recovery for SMBs

A Techaisle survey of 600 small businesses indicates that 34% expect customer reputation damage and 23% anticipate significant bottom-line impacts due to operational challenges. Logistics complications from inventory management to shipment tracking caused business friction. Communication issues with clients, suppliers, and staff led to delays and missed opportunities, while financial activities like processing payments and managing invoices suffered. Some businesses also faced customer service obstacles, leading to customer dissatisfaction and reputational harm.

The recent CrowdStrike outage has highlighted the essential need for dependable tech in today’s businesses and the severe impact that short downtimes can have, especially on SMBs. It's a stark reminder of the importance of solid IT frameworks and contingency planning. Small businesses suffer disproportionally during such outages due to leaner cyber defenses and limited personnel, which are significant hurdles when crises strike. The manual resolution required here spotlighted these weaknesses. Small IT teams, typically stretched thin with various duties, found it tough to manage the fix across several devices, leading to overtime work to fix crucial operations.

Techaisle's study on SMB and Midmarket Security Adoption Trends projects that IT security spending by small and mid-sized businesses worldwide is expected to reach US$90 billion in 2024, showing a 9.4% increase from the previous year. In the US alone, the market expenditure is set to rise by 8.3%. Significant investments will concentrate on Endpoint Protection, Network Security, and Identity and Access Management, with MDR (Manage, Detect, Respond) services seeing the most rapid growth in the SMB and midmarket sectors.

A significant increase in funding for IT security is projected among high-growth SMBs. Notably, 21% of rapidly growing small and medium-sized enterprises (SMBs) and 26% of mid-sized companies are forecasting a minimum growth of 15% in their IT security budgets for 2024. Highly innovative organizations are committed to improving security measures as well, with 18% of SMBs and 21% of midmarket companies planning to boost their spending by 12% compared to the previous year.

Techaisle's data also reveals a concerning cybersecurity preparedness gap among small and medium-sized businesses, with 42% having no cyber incident response plan. Despite nearly half experiencing security breaches, often going unnoticed, only 40% are confident in their recovery capabilities, likely downplaying the risks. These cyberattacks come at a high cost, with SMBs' average annual losses reaching $1.4 million. Contributing to this issue is the fact that 46% of these businesses lack formal risk assessment methods, indicating a serious underestimation of online threats.

Addressing SMB and Midmarket security issues can be done through various lenses. Segmenting security adoption into four categories—Prevent & Protect, Detect & Respond, Adapt & Comply, Restore & Recover—provides an understanding of preferred solutions and areas poised for growth. This framework helps clarify how these companies prioritize and distribute funds for cybersecurity strategies.

Today's cybersecurity landscape is a complex maze, with a multitude of vendors contributing to a convoluted and intricate security stack. The evolution of security from traditional perimeter defenses around private data centers to a distributed network of branch offices, remote workers, and IoT devices has necessitated a radical shift in security strategies, with a focus on enforcement points across the network. At its core, security is a data challenge, where the sheer volume of data often hinders the identification of actionable insights, leading to an imbalanced signal-to-noise ratio and the prevalent issue of alert fatigue. Effective data connection across control points is crucial to transform low-level alerts into critical insights that demand immediate action.

Under the visionary leadership of Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration, Cisco's security product portfolio has undergone a transformative evolution. This radical re-envisioning of security paradigms has significantly refined Cisco's security cloud solutions, streamlining the adoption process for an integrated security platform. In response to the complexities of distributed environments, Cisco introduced 'Hypershield,' a pioneering expansion of the hyper-distributed architecture concept tailored to meet the demands of hyper-distributed security. The strategic acquisition of Splunk has further fortified Cisco's capabilities, enabling it to manage the signal-to-noise ratio effectively. Leveraging Splunk's advanced data analytics, Cisco aims to mitigate alert fatigue by converting many low-level events into meaningful, actionable insights.

The Birth of the Cisco Security Cloud Platform

In June 2022, Cisco introduced the Cisco Security Cloud Platform at the RSA Conference, a visionary solution designed to streamline the complexity of managing disparate security tools. This platform offers a unified experience, ensuring secure connections for users and devices to applications and data, irrespective of location.

The platform's emphasis on openness provides a comprehensive suite for threat prevention, detection, response, and remediation at scale. At its core is a powerful firewall, enhanced with AI for superior analysis. Identity management is flawlessly integrated, allowing every Cisco security product to leverage AI-driven insights and user authentication.

Cisco addressed the challenge customers faced with the vast array of security products—approximately 30 products with over 1,000 variations—by significantly simplifying its portfolio. Customers now have a choice of three intuitive suites: User Protection, Cloud Protection, and Breach Protection. These suites are not merely bundled; they are fully integrated, facilitating seamless communication and improved functionality, making security management far more straightforward and efficient.

Tackling Hyper-Distributed Security with Cisco Hypershield

As an industry analyst, I am convinced that Cisco's recent strides in security innovation are nothing short of impressive. The 2023 launch of Cisco Multi-cloud Defense, Cisco XDR, Cisco Secure Access, and advanced firewall functionalities marked a year of significant progress. The introduction of Cisco AI Assistant was a testament to its commitment to continuous innovation. In 2024, Cisco took a giant leap by introducing Hypershield, a sophisticated, AI-enhanced, cloud-native security system set to redefine cybersecurity.

The cybersecurity landscape is undergoing a significant shift, driven by a surge in spending across all business segments. According to Techaisle SMB and Midmarket Security Adoption Trends research, the combined IT security spending (excluding managed security services) for global SMBs and Midmarket companies is projected to reach a staggering US$90 billion in 2024, reflecting a healthy 9.4% increase from 2023. This data paints a clear picture: businesses of all sizes are prioritizing cybersecurity and investing heavily in defense mechanisms.

Interestingly, the growth in spending is not uniform across the board. The most significant increases are anticipated from high-growth, highly innovative companies. A striking 21% of high-growth SMBs and 26% of high-growth midmarket firms are expected to bolster their IT security budgets by at least 15% in 2024. These figures underscore these companies' unique challenges and the need for tailored cybersecurity strategies. Very innovative businesses are also demonstrating a strong commitment to security, with 18% of SMBs and 21% of midmarket companies in this category planning to increase their spending by 12% compared to the previous year.

At the core of an SMB's resilience lies cyber resilience, the nexus that links cybersecurity, business continuity, and overall preparedness. It's not just about defense; it's about bouncing back from any crisis, whether a cyberattack, natural disaster, or economic downturn. Cyber resilience ensures operations continue smoothly even in turbulent times by encompassing prevention, response, and recovery. This comprehensive approach not only ensures business continuity and protects sensitive data but also plays a pivotal role in fostering customer trust. Techaisle survey data reveals that 35% of SMBs and 46% of upper midmarket firms view the shift from cybersecurity to cyber resiliency as not just important but crucial.