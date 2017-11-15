UK firms foot the bill failing to learn from security faults.

The average business deals with hundreds of security incidents weekly, but a new report suggests more can be done to stave off future costly attacks.

The data showed 13.3% of all incidents are repeats of previous security breaches. Almost all those surveyed (96%) said failure to learn from previous incidents through effective root cause analysis lead to the problem recurring. Moreover, the research found more duplicate and repeat incidents correlated with higher costs to IT.

Typically, a British firm logs in the region of 1,200 incidents each month, with critical security breaches labelled severity 1, priority 1 or P1 numbering around 5, according to the report commissioned by Splunk and carried out by Quocirca.

A critical IT incident has a mean cost of £22, 371, which rises to £58,955 when taking into account the downstream business impact. Increasingly complex IT infrastructure, including virtualization, containerisation and cloud services can precipitate more weak spots for security. On top of that, nearly three-quarters (70%) of respondents said a critical incident has caused reputational damage to their business.

It is thought IT monitoring software which can collect and analyze incident data could reduce the reccural rate. Another factor is the average time it takes to resolve an incident, which the research found to be just shy of six hours in the UK. Just one in five companies felt their mean time to detect incidents was as fast as it could be.

“Today’s IT environments are more complex than ever, spanning data centers, cloud services and on-the-edge devices such as mobile and IoT,” said Rick Fitz, senior vice president of IT Markets, Splunk, who commissioned the research.

“Because systems are often siloed, IT can struggle to collect and correlate information, making it difficult to monitor infrastructure and rapidly troubleshoot problems.”

Quocirca carried out its research across USA, Japan, Singapore, Australia, Sweden, Netherlands, Germany, France and UK, surveying employees from a range of business sizes and sectors.