GoSecure Titan Labs research indicates that there is a gap between in-house security teams’ perceptions of the value of the security controls they implement, and the protection needed against most common attack vectors leveraged by penetration testers who challenge them based on real-world threat intelligence. This presentation will highlight two years of research into that disconnect, along with potential open-source tools and methods teams can consider to bridge the divide. Our analysis comes from a survey of 120 cybersecurity professionals and was compared with findings from penetration tests conducted across North America. By linking the defenders’ perceptions with their reported actions and cross-referencing the results with statistics on penetration testing, we uncovered important information gaps. Throughout the presentation, we’ll examine how much of the disparity might be caused by strategy and decision-making within the security organization, with a thoughtful examination of the human element that also drives these perceptions.
Closing the Perception Gap: Do I Have the Right Tools for Today’s Attack Vectors
