Summary: ZEST Security has released the “Cloud Risk Exposure Impact Report,” detailing the connection between remediation delays and cyber incidents, revealing that over 62% of incidents stem from known risks. The report emphasizes the significant time gap between the identification of vulnerabilities and their remediation, often resulting in severe financial implications for organizations. Key recommendations include adopting effective remediation strategies and developing risk remediation plans that align with incident response protocols.
Affected: ZEST Security, U.S. enterprises
Keypoints :
- 62% of incidents arise from identified risks that remain unresolved due to backlog.
- Remediation takes on average 10 times longer than the time it takes for attackers to exploit vulnerabilities.
- The annual cost of remediation is over million, highlighting significant resource expenditure.
- Organizations report an average backlog of over 100 critical security tickets and typically take over 6 weeks to remediate application vulnerabilities.
- A significant portion of respondents (56%) noted that some risks cannot be remediated due to lack of patches or legacy systems.
- Effort-based prioritization and automation are key strategies to improve remediation efficiency.
- 84% of organizations are researching mitigating controls to minimize risk when immediate remediation is not possible.