Security and risk management leaders must address seven trends to protect the expanding digital footprint of modern enterprise organizations from new threats in 2022 and beyond, Gartner said.
Peter Firstbrook, research vice president at Gartner, said: "Enterprise organizations around the world are facing sophisticated ransomware attacks, attacks on digital supply chains and deep vulnerabilities. The pandemic has accelerated the development of hybrid work models and the move to the cloud, posing a challenge for chief information security officers (CISO) : how to protect increasingly decentralized organizations while addressing the shortage of senior security personnel."
These challenges have led to three general trends influencing cybersecurity practice : (1) new responses to complex threats; (2) Evolution and reconstruction of safety practices; (3) A rethinking of technology. The following trends will have a broad impact on the industry in all three areas.
Trend 1: The attack surface expands
The scope of corporate attack is expanding. Risks posed by the use of net-physical systems and the Internet of Things, open source code, cloud applications, complex digital supply chains, social media, and more expose organizations to attacks beyond their controllable assets. Organizations must adopt a more advanced approach to managing a wider range of security risks than traditional security monitoring, detection, and response.
Digital Risk Protection Services (DRPS), External Attack Surface Management (EASM) technology and Network Asset Attack Surface Management (CAASM) will help ciOs visualize internal and external business systems and automatically detect security breaches.
Trend 2: Digital supply chain risk
Cybercriminals have found that hacking digital supply chains can be highly rewarding. Expect more threats as vulnerabilities like Log4j spread through the supply chain. Gartner predicts that 45 percent of organizations worldwide will suffer from software supply chain attacks by 2025, a threefold increase from 2021.
To reduce digital supply chain risk, organizations need to adopt new responses, including more deliberate, risk-based vendor/partner segmentation and scoring, requirements for proof of security controls and best practices, a shift to flexible thinking, and efforts to stay ahead of upcoming regulations.
Trend 3: Identity threat detection and response
Savvy threat originators are aggressively targeting identity and access management (IAM) infrastructure through abuse of evidence. Gartner has coined the term "Identity Threat Detection and Response" (ITDR) to describe a collection of tools and best practices for securing identity systems.
"Organizations have put a lot of effort into improving IAM capabilities, but most of that effort is focused on improving user authentication technology, which actually expands the vulnerability of a fundamental part of the cybersecurity infrastructure," Firstbrook said.ITDR tools can help protect identity systems, detect when they have been compromised, and take effective remedial action."
Trend 4: Distributed decision making
As the network security needs and expectations of enterprises mature, executives need more agile security measures as the attack surface expands. Therefore, in order to meet the scope, scale, and complexity of digital businesses, cybersecurity decisions, responsibilities, and accountability systems need to be distributed across the organization, avoiding centralized functions.
"The role of the CHIEF information security officer has shifted from being a technical domain specialist to an executive risk manager," Firstbrook said. By 2025, a single, centralized network security function will not be able to meet the needs of digital enterprise organizations." Cios must rediscover their role in helping boards, ceos and other business leaders make informed risk decisions."
Trend 5: Beyond safety awareness training
Many data breaches are still caused by human error, proving that traditional security awareness training methods are ineffective. Advanced organizations are investing in holistic safety behavior and culture programs (SBCP) to replace outdated compliance centric safety awareness campaigns. The overall safety behavior and culture program focuses on fostering new ways of thinking and behavior that lead to safer working practices throughout the organization.
Trend 6: Vendor consolidation
Security technology convergence is accelerating, driven by the need to reduce complexity, reduce administrative overhead, and improve effectiveness. New platform strategies such as Extended Detection and Response (XDR), Secure Service Edge (SSE) and Cloud Native Application Protection Platform (CNAPP) are accelerating the benefits of converged solutions.
For example, Gartner predicts that 30% of enterprises will adopt the same vendor's Cloud Secure Network Gateway (SWG), Cloud Access Security Agent (CASB), Zero-trust Network Access (ZTNA), and branch firewall as a Service (FWaaS) capabilities by 2024. The integration of safety features will reduce total cost of ownership and improve long-term operational efficiency, thereby improving overall safety.
Trend 7: Network security grid
The trend toward consolidation of security products is driving the integration of security architecture components, but organizations still need to define unified security policies, enable workflows, and exchange data between integrated solutions. The Network Security Grid Architecture (CSMA) helps provide a common, integrated security architecture and posture to secure all on-premise, data center, and cloud assets.
"The major cybersecurity trends reported by Gartner do not exist in isolation, but are interdependent and reinforcing," Firstbrook said. Together, they will help ciOs drive the evolution of their roles to meet future security and risk management challenges and continue to elevate their standing within the enterprise organization."
ARCH will send you the latest news and unique insights in telecom area every month