Overcoming the Cybersecurity Skills Shortage with DDoS Protection that’s Automated

Organizations of all sizes face a two-fold challenge; just as cyber threats are growing, there is an increasing shortage of trained cybersecurity professionals to defend against those threats. We are now seeing consistent reports about the shortage of cybersecurity professionals, and the trend isn’t getting any better. The latest (ISC)² Cybersecurity Workforce Study indicates a necessary cybersecurity workforce increase of 145%. The study is based on online survey data from more than 3,200 individuals responsible for security/cybersecurity throughout North America, Europe, Latin America and Asia-Pacific.

The shortage spells trouble for businesses of all sizes, because cyber threats, such as distributed denial of service (DDoS) attacks, are rampant and they result in loss of revenue and customer trust, on top of unexpected IT costs. One Corero survey found that more than 15 IT staff can be consumed in diffusing the threat when a DDoS attack occurs, and this costs enterprises up to $50,000 (£35,000) per attack. DDoS attacks are a frequent occurrence for many organizations around the globe. Not surprisingly, there is a growing demand for network engineers, and security analysts, with DDoS expertise who can operate existing solutions and work with vendors to improve protection.

Everyone can agree that it’s important to ramp up cybersecurity training and hiring, but those are relatively long-term solutions. In the short term, businesses should turn more often to automated cybersecurity solutions that require fewer human security analysts. In the case of DDoS protection, multi-vector, automated DDoS attacks are the norm these days, which means that it has become virtually impossible to mitigate many attacks, in the absence of automated protection. Attackers often start with one attack technique, such as a simple UDP flood, and, if unsuccessful, automatically enable a second technique, such as a DNS reflection and then, maybe, a third, fourth, fifth, or more. They can continue to leverage different attack techniques, automatically, until their target’s environment is successfully impacted. Their attack tools know if they’re successful and they react in real-time. In fact, even for companies that do have adequate security analysts, they cannot possibly respond quickly enough to these automated attacks. A manual, reactive approach simply isn’t good enough; it adds latency and inaccuracies to the remediation process, so it’s critical to deploy an always-on, automated DDoS solution.

There is no question that automated DDoS defense helps reduce staffing needs and saves time for existing security analysts to focus on other threats. Kyle Thorne, Chief Technical Officer, VentraIP, Australia’s largest privately-owned web hosting and domain name company, reports that with the Corero SmartWall® Threat Defense System, “Not having to have someone ‘on call’ to manually enable mitigation is extremely helpful. We don’t have to worry about having one of our network administrators near their computer 24/7. Now that we have automatic alerts, we see attack attempts every few days, and we can see in real time that the attacks are blocked.”

When faced with the dual challenges of the cybersecurity skill shortage and the everyday threat of DDoS attacks, organizations need automated DDoS protection to ensure business continuity and security.

For over a decade, Corero has been providing state-of-the-art, highly-effective, real-time automatic DDoS protection solutions for enterprise, hosting and service provider customers around the world. Our SmartWall DDoS mitigation solutions protect on-premise, cloud, virtual and hybrid environments. For more information, please contact us.

Sean Newman is VP Product Management for Corero Network Security. Sean has worked in the security and networking industry for twenty years, with previous roles including network security Global Product Manager for Cisco, who he joined as part of their acquisition of cyber-security vendor Sourcefire, where he was Security Evangelist and Field Product Manager for EMEA. Prior to that he was Senior Product Manager for endpoint and network security vendor Sophos, after having spent more than 12 years as an Engineer, Engineering Manager and then Senior Product Manager for network infrastructure manufacturer 3Com.