If you got here in the last post in our series on the evolution of security in the SOC, you already understand how information security has evolved, how tools have become more complex and how a modern SOC is structured to be able to detect and respond.

But why should your company be concerned about this anyway?

Every 39 seconds, there is a new cyberattack attempt in the US. Which means there is no longer any doubt that security breaches will occur and negatively impact business. So the question is no longer whether a company will be hacked, but when it will be.

When doing the math on how much it costs to deploy a good data protection service, some companies find it all too expensive and put off planning.

Only those companies that insist on dwelling on the calculation that involves budgets for antivirus and IT tools believe that cyber security can be left for later. The problem is that, in this scenario, the most important thing is left out. We need, first of all, to put on paper how much it costs not to protect.

The results of a break-in can be devastating. A lot of money lost. Time wasted. Brand reputations destroyed.

In Brazil, in 2019, the average cost of a data breach was R$5.4 million, an 18.93% increase on 2018. By 2020, in the United States, that figure is already at US$5 million.

At the same time, the cybersecurity industry has an efficiency problem. There are thousands of vendors in the market, with billions spent annually on defence. And yet, the number of breaches continues to rise.

If tools alone were enough to solve the problem, they would have solved it by now. Data breaches often occur not because a tool failed to detect the threat or alert on a vulnerability, but because of a lack of proper workflows, processes and experienced people who know how to prioritise remediation.

That is an operational problem that needs to be solved, and that is what we deliver. Now, in a new way. A new way of doing security. Understand it here.