Story image

Gartner - 6 security and risk management trends

04 Jul 2018

Gartner has identified six key trends in cybersecurity that can guide IT leaders and security service providers as they approach business leaders during this time of increasing threat awareness.

1. Executive cybersecurity awareness

IT security is a board-level topic and an essential part of any solid digital business strategy.

Business leaders have not always been receptive to this message, but a recent string of high-profile incidents have changed sentiment.

Prominent examples include an Equifax data breach that cost the CEO, CIO and CSO their jobs; a WannaCry attack that caused worldwide damage estimated at between $1.5 to $4.0 billion; and Verizon's recent $350 million discount on its purchase of Yahoo! as a result of the latter's data breach.

"Business leaders and senior stakeholders at last appreciate security as much more than just tactical, technical stuff done by overly serious, unsmiling types in the company basement," says Gartner research vice president Peter Firstbrook.

2. Regulatory mandates on data protection

Customer data is the lifeblood of ever-expanding digital business services.

Incidents such as the recent Cambridge Analytica scandal or the Equifax breach illustrate the extreme business risks inherent to handling this data.

Moreover, the regulatory and legal environment is getting ever more complex, with Europe's GDPR the latest example.

At the same time, the potential penalties for failing to protect data properly have increased exponentially.

In the U.S., the number of organizations that suffered data breaches due to hacking increased from under 100 in 2008 to over 600 in 2016.

"In this new reality, full data management programs - not just compliance - are essential, as is fully understanding the potential liabilities involved in handling data," says Firstbrook.

3. Security product agility

New detections technologies, activities and authentication models require vast amounts of data that can quickly overwhelm current on-premises security solutions.

This is driving a rapid shift toward cloud-delivered security products.

These are more capable of using the data in near real time to provide more-agile and adaptive solutions.

"Avoid making outdated investment decisions," says Firstbrook.

"Seek out providers that propose cloud-first services, that have solid data management and machine learning (ML) competency, and that can protect your data at least as well as you can."

4. Machine learning integration

The shift to the cloud creates opportunities to exploit ML to solve multiple security issues, such as adaptive authentication, insider threats, malware and advanced attackers.

Gartner predicts that by 2025, ML will be a normal part of security solutions and will offset ever-increasing skills and staffing shortages - but not all ML is of equal value.

"Look at how ML can address narrow and well-defined problem sets, such as classifying executable files, and be careful not to be suckered by hype," says Firstbrook.

"Unless a vendor can explain in clear terms how its ML implementation enables its product to outperform competitors or previous approaches, it's very difficult to unpack marketing from good ML."

5. Geopolitical factors

Increased levels of cyber warfare, cyber political interference, and government demands for backdoor access to software and services have resulted in new geopolitical risks in software and infrastructure buying decisions.

Recent government bans against Russian and Chinese firms are obvious examples of this trend.

"It's vital to account for the geopolitical considerations of partners, suppliers and jurisdictions that are important to your organisation," says Firstbrook.

"Include supply chain source questions in RFIs, RFPs and contracts."

6. Decentralisation efforts

The internet is driving a wave of centralisation, one obvious example of which is cloud computing.

While there are many benefits, a good security team should be accounting for the risks too.

"Evaluate the security implications of centralisation on the availability, confidentiality and resiliency of digital business plans," says Firstbrook.

"Then, if the risks of centralisation could seriously threaten organisational goals, explore an alternative, decentralised architecture."

Norwegian aluminium manufacturer hit hard by LockerGoga ransomware attack
“IT systems in most business areas are impacted and Hydro is switching to manual operations as far as possible.”
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.
Mozilla launches Firefox Send, an encrypted file transfer service
Mozille Firefox has launched a free encrypted file transfer service that allows people to securely share files from any web browser – not just Firefox.
Ransomware’s decline equals cryptomining’s rise
ESET’s Security Days Conference recently took place to go over the current threat environment and what to look out for next.
IoT and DDoS attacks: A match made in heaven
A10 Network’s Adrian Taylor uses findings from a number of reports to illustrate his point that advances in technology are facilitating cybercrime.