This research report summarizes an annual survey of 100 cybersecurity professionals comparing 2020 to 2019 and concludes that alert overload persisted, with the bigger shift being higher alert criticality tied to the rapid move to remote work and a less hardened perimeter exploited by ransomware and nation-state campaigns. Nearly half of respondents investigated only 10–20 alerts per day even as organizations generated far more, and investigations took longer on average, with fewer resolved in under 10 minutes and more taking 11–15 minutes. False positives remained a major drag, with 68% saying 25–75% of investigated alerts were false, and many teams responded by reducing thresholds, turning off noisy alerting, or ignoring categories of alerts, increasing risk. The report also notes growin

Join for free to read