Under constant pressure to defend against cyberthreats, organisations often adopt new security tools rapidly to address specific vulnerabilities or compliance requirements. However, this reactive approach can lead to “tool sprawl,” where the unchecked accumulation of disparate solutions results in an overly complex and fragmented security environment. Kim Larsen, CISO at Keepit, shares the below:
What is cybersecurity tool sprawl?
Cybersecurity tool sprawl occurs when organisations continuously add new tools without fully assessing their existing security infrastructure or considering how these additions fit into the broader architecture. Over time, this reactive approach leads to an overextended security framework, where overlapping functionalities, siloed data, and operational inefficiencies compromise overall security.
What does cybersecurity tool sprawl look like?
Today, cybersecurity tool sprawl is characterised by an overabundance of security tools, often numbering in the dozens or even hundreds within large organisations. At the 2019 RSA Conference, Matt Chiodi, former chief security officer of public cloud at Palo Alto Networks, noted that small organisations average 15-20 tools, medium-sized businesses 50-60, and large enterprises over 130 tools.
Five critical challenges that come with tool sprawl
Tool sprawl presents numerous challenges that can hinder an organisation’s ability to maintain an effective security posture. Five of the top side effects of tool sprawl are:
1. Operational inefficiency
2. Increased costs
3. Skill gaps
4. Visibility and control issues
5. Integration challenges
Please find more information, including tips on how security leaders can minimise tool sprawl, here.
