Carrick NewsroomPress Releases

Bay Dynamics Report: Cyber Security Pros Don’t Trust Their Tools

NEW YORK, NY (May 17, 2017)Bay Dynamics® unveiled a new custom research report that shows most cyber security professionals do not trust the data coming from their security tools. “A Day in the Life of a Cyber Security Pro,” captures the challenges security professionals face every day managing millions of vulnerabilities at any given time along with incorrectly prioritized threat alerts.

Third party research firm Enterprise Management Associates conducted a survey of more than 400 cyber security professionals working in North America-based organizations with at least 5,000 employees. Respondents came from a variety of vital industries including finance, insurance, government, healthcare, retail, infrastructure and more.

Key highlights include:

  • Enterprises with more than 20,000 employees manage more than 1.3 million vulnerabilities every 30 days
  • 74% of respondents say they are overwhelmed by the volume of vulnerability maintenance work
  • 79% of respondents say their patching approval process is significantly manual
  • 64% of threat alerts are not addressed each day
  • 52% of threat alerts are improperly prioritized by systems and must be manually re-prioritized

The report also shows a lack of transparency about organizations’ cyber risk posture. When asked to rate the level of maturity of their vulnerability management programs, 87% of respondents say they have a “very mature to moderately mature” patching process.

“Considering most respondents say they need to rely on manual methods to manage threats and vulnerabilities, it is clear there is a façade in front of security program maturity which is spread throughout the management chain,” said David Monahan, Security and Risk Management Research Director at Enterprise Management Associates. “When security professionals paint a rosier picture than reality, every role above them is falsely insulated leading to poor program decisions. That’s why transparency is essential. Everyone should have access to the same set of data at any moment in time.”

“Security professionals are overwhelmed by endless threats and vulnerabilities and are unable to decipher which ones could cause the most harm,” said Ryan Stolte, co-founder and CTO at Bay Dynamics. “They lack confidence in their security tools’ prioritization capabilities, and thus end up manually stitching together the information needed to re-prioritize the most critical vulnerabilities and imminent threats. To relieve the pain, security teams need a system of record that automatically prioritizes threats and vulnerabilities based on financial impact to the organization, delivers that information to the individuals responsible for action, and provides updates of their mitigation status.”

To download the report, visit:

To learn more about Bay Dynamics, visit:

About Bay Dynamics

Bay Dynamics® enables enterprises and agencies to continuously quantify the financial impact of cyber risk based on actual conditions detected dynamically in their environment. The company’s flagship product, Risk Fabric®, is an analytics software platform that calculates the value at risk associated with specific threats and vulnerabilities, and prescribes actions to measurably reduce cyber risk exposure. Using Risk Fabric, stakeholders across the business can use common metrics to prioritize their remediation activities on the risks that matter most. For more information visit

Follow Bay Dynamics on Twitter at, on LinkedIn at, and on Facebook at

Bay Dynamics and Risk Fabric are registered trademarks of Bay Dynamics, Inc. Other trademarks mentioned are the property of their respective owners.

Image Available:–c25f44728e559c52b617c7080791dbc7.jpg


Media Contact:

Abby Ross
Bay Dynamics

About Carrick Capital Partners
Who We Are
A firm of enterprise software, SaaS, and technology enabled services investors and operating executives with substantial experience founding, scaling, and optimizing market leading businesses.
Our Approach
We work with management to identify and improve critical areas of their business - focusing on the priorities that align with our experiences and that will deliver the highest strategic impact in both the short-term and long-run.
Why We Are Different
We have a concentrated number of companies in our portfolio so that we can build substantial relationships with each management team and ensure our firm's commitment to each company's goals.
Latest News
Saama Logo
Campbell, CA (February 18, 2020) - Saama Technologies, Inc. (“Saama”), the number one AI clinical analytics platform company, announced today that it recently expanded its leadership team to include life science technology expert Jonathan Burr as Senior Vice President of Clinical Platform Strategy, and technology marketing leader Gregory T. Simpson as Vice President, Head of Marketing. Jonathan is responsible for growing client adoption of Saama’s existing products, and Greg is charged with building and strengthening the Saama brand. The announcement came at the start of the 11th Annual Summit for Clinical Ops Executives (SCOPE) meeting in Orlando.
February 18, 2020
Saviynt Logo.jpg
Saviynt Announces the Return of Converge EMEA Conference on March 11th, 2020, Featuring Keynote Speaker Dex Torricke-Barton
February 16, 2020
Mavenlink Logo.jpg
Founding Members Keith Carlson, Ed Marshall, and Walt Weisner Bring Deep Services Industry, Consulting, and Product Expertise
February 13, 2020