Cyber Resilience Think Tank Forecasts Four Key Trends to Hit the Cybersecurity Industry
During the CR Think Tank meeting, much of the discussion centered on the transformations of the SaaS, InfoSec and Application Security industries. The group also covered the challenges associated with not including security from the start.
To best prepare for a strong and strategic 2020, the CR Think Tank outlined four key trends that will impact how organizations approach cybersecurity.
1. DevOps and Security Efforts will Align to Mitigate Business Risk
New features, bug fixes, configuration changes, and much more are delivered and iterated upon quickly to provide the best possible end user and customer experience. However, because of the constant iterations and improvements, security can no longer be an afterthought. DevOps teams are dependent on cloud deployments, which means that security must be top of mind at every stage of the application development process.
2. Industry Consolidation will Increase the Possibility of a Breach
After a period of explosive innovation and growth in the security solutions space, 2019 saw a busy year of consolidation, with larger players snapping up smaller ones to expand their portfolios.
Beyond the economic implications for the industry, consolidation in cybersecurity has another angle that all organizations need to consider. The complexity that comes with diverse security technologies and the ecosystems where they operate together injects risk around inadvertently acquiring your next breach. To mitigate this challenge, security leaders must be brought into mergers and acquisitions in the early stages of planning to have a greater understanding of the security posture and capabilities of the company being acquired.
3. Attack Simulation will Grow as Pen Testing Becomes Table Stakes
When it comes to building defenses against attackers, what worked in years past will no longer be sufficient in 2020. Traditional pen testing has been considered a key pillar of good cybersecurity because it forces leaders and analysts to proactively push the bounds of what they’re doing, continuously validating the tools and alerting inside security environments. Beyond kicking the tires to ensure everything is functioning properly, programs have been used as valuable training approaches and to demonstrate system capabilities and processes to stakeholders.
Harkins noted that this brings the shortage of cybersecurity professionals to mind. While pen testing is expensive in resources and limited in scope, attack simulation technology looks much more appealing for high yields and low cost. Security leaders who can reduce manual labor costs and cover more ground using automation will free up time for more valuable development cycles.
4. Hyperconvergence of Technologies will Increase Risk of Microbreaches
Microbreaches are slight manipulations of data that can cascade throughout distributed IT environments. Given the market consolidation that’s underway in the security solution space, CR Think Tank members believe these kinds of attacks will emerge more pervasively in 2020. Beyond the ecosystem complexity and lack of integration, these attacks will be enabled by mobility and other emerging technologies that have created new points of entry.
Download the Commencing a New Decade: 2020 Predictions eBook for more insights from the CR Think Tank.
About Cyber Resilience Think Tank
The Cyber Resilience Think Tank is an independent group of security leaders who are dedicated to working together to address cyber resilience challenges facing organizations. Past reports the CR Think Tank has published include, Decluttering Your Security Environment, Threat Intelligence: Far-fetched Idea or Must Have Security Tactic, and Employees Behaving Badly? Why Awareness Training Matters. For more information on the group and how to join, visit the Cyber Resilience Think Tank homepage.
- Download the full Commencing a New Decade: 2020 Predictions eBook
- Learn more about the Cyber Resilience Think Tank
Source: Mimecast Limited