Recent studies indicate that the average cost associated with resolving these incidents has surged to approximately US$16.2 million over a 12-month period. This increase underscores the significant impact such threats can have on organisational security and financial stability. Despite the rising costs and evolving nature of these threats, many businesses have yet to implement formal insider risk programmes, resulting in critical vulnerabilities.
CrowdStrike has introduced a suite of services aimed at addressing insider threats, a growing concern for organisations navigating today's complex cybersecurity landscape. The CrowdStrike Insider Risk Services provide a comprehensive approach to identify and mitigate risks posed by negligent employees, malicious insiders, and sophisticated adversaries.
CrowdStrike's new offering integrates advanced technology, threat intelligence, and human expertise. By leveraging the capabilities of the CrowdStrike Falcon cybersecurity platform, organisations can enhance their defences through proactive identification of risks. Key services include technical reviews to assess security posture, tabletop exercises to simulate insider threat scenarios, and expert-led incident response to swiftly manage incidents when they occur.
Recent intelligence efforts by CrowdStrike have revealed the tactics employed by adversaries such as the DPRK-affiliated group FAMOUS CHOLLIMA, which has infiltrated numerous U.S. technology firms by masquerading as legitimate employees. This highlights the need for organisations to adopt proactive strategies to safeguard their environments against insider threats.
In a separate announcement, CrowdStrike shared findings from a Total Economic Impact (TEI) study conducted by Forrester Consulting regarding its Falcon Identity Protection product. The study indicated that organisations utilising this service saw a 310% return on investment, with total benefits amounting to US$1.26 million over three years. The study also noted a notably short payback period of under six months, emphasising the financial advantages of robust identity protection.
The TEI study further revealed that none of the organisations interviewed reported experiencing a breach after implementing Falcon Identity Protection. This service is designed to combat sophisticated attacks that exploit identity and cloud vulnerabilities, focusing on comprehensive visibility and protection across the attack surface.
Key findings from the study included significant cost savings from consolidating cybersecurity tools and enhanced operational efficiency within Security Operations Centres (SOCs). Participants reported a substantial decline in incident volume, allowing SOC teams to concentrate on strategic initiatives.
As organisations continue to grapple with the challenges posed by insider threats, CrowdStrike's new services and findings from the TEI study reflect a growing emphasis on proactive measures and unified cybersecurity strategies.