- Products+
- IT Service Management+
- IT Operations Management+
- IT Business Management+
- Software Asset Management
- Performance Analytics
- Security Operations
- HR Service Delivery+
- Customer Service Management+
- Governance, Risk, and Compliance
- Build a Business App
- Now Certified Apps
- Now Platform
- Nonstop Cloud
- View All Products
- Solutions+
- ServiceNow Solutions+
- Modernize IT Service Management
- Eliminate Service Outages
- Manage Cloud Sprawl
- Resolve Real Security Threats Fast
- Resolve Customer Issues at Lightspeed
- Optimize Performance with Real-Time Analytics
- Consumerize the Employee Service Experience
- Take Control of Apps, Projects, and Financials
- Build Business Applications at Lightspeed
- Transform Your Business
- Industry Solutions+
- View All Solutions
- ServiceNow Solutions+
- Services & Support+
- Partners+
- Events+
- About Us+
MORE
The Global 
Study:
How Leading Organizations Respond to Security Threats and Keep Data Safe
ServiceNow surveyed 300 CISOs on enterprise security response strategies. Here is what they said:
A State of Insecurity
Automation on the Rise
Security Response
Leaders
Leaders
A State of Insecurity
Security executives are highly concerned that security breaches are going undetected, and they are equally concerned that these breaches are going unaddressed, even when they have been discovered.
FIND OUT MOREAutomation on the Rise
Most CISOs understand the business value of security automation and expect to increase the scale and sophistication of their automation efforts over the next three years, but some are further along than others.
FIND OUT MORE
Security Response Leaders
Get Better Results
Better security strategies and processes can mitigate operational, reputational, and financial risks by improving the speed and efficiency of detection and response. What sets the most capable security organizations apart from their peers?
FIND OUT MOREA word from the experts
We automate as much as possible. You have some threat vectors where you cannot survive if you are not automated. We want to have a viable environment consisting of real-time control and real-time reaction.”
CARSTEN SCHOLZ
CHIEF INFORMATION SECURITY OFFICER, ALLIANZ SE
The data that we hold is particularly valuable and sensitive, and therefore we have to keep the public trust in the way that we hold that data. When you look at incidents where patient-facing appointments are canceled, it no longer becomes just a reputational risk, it also becomes a financial cost.”
DAN TAYLOR
HEAD OF SECURITY, NHS DIGITAL
We are feeding about three terabytes of logs today to our systems that we review, and a lot of those are automated systems that pop out things that are interesting to our analysts, and our analysts will then go and review those things and tune accordingly. So, yes, automation is a large component.”
DANIEL CONROY
CHIEF INFORMATION SECURITY OFFICER,
SYNCHRONY FINANCIAL
SYNCHRONY FINANCIAL
Explore the data
Questions
Q1. Which of the following do you see as most
important to the success of your organization by 2020?
Respondents could select up to 3.
Q2. How concerned are you that security breaches that
have been detected are going unaddressed?
Q3. How concerned are you that security breaches are
going undetected?
Q4. Which type of attack presents the greatest danger to
your company’s reputation and financial performance?
Respondents ranked top 3 risks; numbers
displayed show ranks 1, 2, and 3 combined.
Q5. How effective are you at protecting against these
types of attacks? "Highly effective" responses
Q6. In general, how effective is your company at
preventing security breaches?
Q7. Have you experienced a significant security breach
in the past three years (i.e., an event that was
damaging from a cost or reputational perspective)?
Q8. To what extent do the following factors interfere
with your security function’s ability to protect
against, detect, and respond to security
issues? "A substantial barrier"
and "A complete roadblock"
responses
Q9. How critical are the following to the success of
your security function in terms of detecting and
responding to security
threats? "Important" and "Highly
important" responses
Q10. How important are the following sources of
information to your security function’s efforts in
detecting and responding to
breaches? "Important" and "Highly
important" responses
Q11. To what extent do you agree with the following
statements about the value of
security? "Agree" and "Strongly
agree" responses
Q12. Which technologies are you investing in most
heavily in 2017? Which will you invest in most
heavily in 2020? Respondents could select up
to 3 for each time period.
Q13. Thinking about the technologies you are investing
in, to what extent have they provided value in the
following areas, and to what extent do you expect
them to provide value in the next two
years? "Substantial value"
and "Transformative value" responses
Q14. Approximately what percent of security tasks have
you automated? Approximately what percent do you
expect to have automated in 2020?
Q15. Which tasks are you automating today? Which tasks do
you expect to automate by 2020?
Q16. To what extent do you agree with the following
statements about your
organization? "Agree" and "Strongly
agree" responses
Q17. Please rate your security function’s skills and
expertise in the following areas. "Quite
developed" and "Highly developed"
responses
Focusing on innovation
0%
Automating routing processes
0%
Exploring emerging technologies
0%
Increasing investment in digital skills and technology
0%
Increasing speed to market
0%
Increasing quality of talent recruitment and retention
0%
Risk management
0%
Increasing brand recognition
0%
Entering new geographical markets
0%
Increasing employee engagement
0%
M&A and/or divestiture
0%
Entering new industries
0%
0%
Highlyconcerned
0%
Somewhatconcerned
0%
Not atall concerned
0%
Highlyconcerned
0%
Somewhatconcerned
0%
Not atall concerned
Breach of personal information about customers
0%
Distributed Denial of Service by criminals,
governments, or “hacktivists”
governments, or “hacktivists”
0%
Watch and wait attacks
0%
Breach of personal information about employees
0%
Threats from insiders within a company
0%
Breach of customer credit card or financial information
0%
Breach of intellectual property
0%
Breach of personal information about customers
0%
Distributed Denial of Service by criminals,
governments, or “hacktivists”
governments, or “hacktivists”
0%
Watch and wait attacks
0%
Breach of personal information about employees
0%
Threats from insiders within a company
0%
Breach of customer credit card or financial information
0%
Breach of intellectual property
0%
0%
Ineffective
0%
Somewhat
effective
effective
0%
Effective
0%
Highly
effective
effective
0%
No
0%
Yes
Insufficient quality of data
0%
Insufficient amount of data
0%
Lack of resources (e.g., adequate staffing,
up-to-date technology)
up-to-date technology)
0%
Manual processes
0%
Insufficient expertise or tools for data analysis
0%
Lack of time
0%
Lack of budget
0%
0%
Attracting and upskilling talent
0%
Retaining existing talent
0%
Real-time visibility into security alerts
0%
Collaboration with IT
0%
Increasing automation
0%
Prioritization of security alerts in the context of the larger business
Important
Highly Important
Information from IT
0%
0%
Security reporting
0%
0%
Information from other business functions
0%
0%
Insights from business ecosystems
0%
0%
Information from third-party security vendors
0%
0%
Conversations with CSOs/CISOs at other companies
0%
0%
Agree
Strongly Agree
0%
0%
Reducing time to detect breaches would improve overall financial performance for our company.
0%
0%
Our CEO understands the business value of security.
0%
0%
Reducing time to resolve breaches would improve overall financial performance for our company.
0%
0%
Ensuring security is part of our company’s core strategic initiatives.
0%
0%
Enhanced security would increase business continuity and the unbroken flow of operations.
2017
2020
Big Data and Analytics
0%
0%
Cloud
0%
0%
Internet of Things
0%
0%
Security platforms
0%
0%
Artificial Intelligence
0%
0%
Mobile
0%
0%
Machine Learning
0%
0%
Virtual Reality/Augmented Reality
0%
0%
Detection tools
0%
0%
Response tools
0%
0%
Blockchain
0%
0%
Robotics
0%
0%
Streamlining processes
0%
Prioritizing security incidents based on
the needs of the larger business
the needs of the larger business
0%
Detecting security threats more rapidly
0%
Detecting security breaches more rapidly
0%
Predicting future security threats
0%
Preventing security breaches
0%
Remediating security threats more rapidly
0%
Remediating security breaches more rapidly
0%
Internal collaboration
0%
Upskilling the security workforce
0%
Employee engagement and retention
0%
External collaboration
0%
2017
0%
Automate at least 40% of processes in 2017
2020
0%
Will automate at least 40% of processes by 2020
2017
2020
Prioritizing incidents based on business criticality
0%
0%
Aggregating incident reporting by day/week/month
0%
0%
Trend reporting
0%
0%
Contextualizing and identifying
the business criticality of threats
the business criticality of threats
0%
0%
Aggregation of alerts or incidents
from multiple security tools into a single system
from multiple security tools into a single system
0%
0%
Threat intelligence research
0%
0%
Senior IT and security leaders have
strong working relationships
strong working relationships
0%
Our company sees visibility into internal
workflow data as critical to security
workflow data as critical to security
0%
Our company sees internal collaboration
as critical to security
as critical to security
0%
The CIO and the CSO/CISO have a strong
working relationship
working relationship
0%
Other functions within our organization
understand security
understand security
0%
The quality of our collaboration with other
functions affects our success
functions affects our success
0%
It is difficult to prioritize security incidents
based on their highest business relevance
based on their highest business relevance
0%
Partnerships with vendors outside the
company enhances security performance
company enhances security performance
0%
Partnerships across our business
ecosystem enhance security performance
ecosystem enhance security performance
0%
Analytics
0%
Knowledge of a company's structure, functions,
and interdependencies between them
and interdependencies between them
0%
Knowledge of the threat environment and weaknesses in our security systems
0%
Prioritizing security threats based on their impact on particular business functions
0%
Automating tasks
0%
Routine threat detection
0%
Business acumen
0%
Collaboration across business functions
0%
Predicting future threats
0%
See more CISO insights
- Contact Us
- Careers
- Community
- Resource Center
- Terms of Use
- Privacy Statement
- Cookie Policy
- © 2017 ServiceNow. All rights reserved.