With the increasing sophistication, frequency and damage caused by cyber-attacks, organizations of all kinds continue to prioritize security. At the same time, eroded efficiency, increasing complexity, high costs and a shortage of talent groups are challenging existing security frameworks and methodologies. The cybersecurity industry is ready for a disruption. Here are five security trends to consider in 2020:
- The security market breaks down
The security breach was an emerging issue in 2018. While the great breach in Equifax and the WannaCry virus was stolen from the headlines, the most important news for the future of the security industry went unnoticed. Last year, two major providers, Symantec and Palo Alto Networks, launched venture capital funds to identify and foster emerging security solutions. A third major supplier, Kaspersky Lab, saw that its software was permanently banned by the Trump administration and removed from the Best Buy shelves. The emergence in 2017 and the recent public disclosure of Meltdown and Specter have led the industry to question how much it can rely on any individual security technology that acts alone.
As the cloud, the Internet of Things (IoT), machine learning (ML) and artificial intelligence (AI) infiltrate the company and further challenge conventional security portfolios, long-held security assumptions about Asset identifiers, platform integrity and dynamics of applications and services are increasingly weak. Count on new, more adaptive security capabilities that take full advantage of the intent, context, advanced analysis and defined flexibility of the software to help address the cybersecurity and resilience needs of these highly dynamic technologies.
- Applications increasingly become the new perimeter
In many recent violations, the underlying problem was the incorrect configuration of the security policy. These errors are a direct consequence of the limited visibility of the policies and their complex management. There is a need throughout the company to simplify security policies by focusing on the application, service, data and device. At this level, identifying both correct and malignant behavior is the least complex and, therefore, the easiest to automate and manage consistently. Organizations are expected to rely more and more on a more granular and direct application of security policies, both throughout the infrastructure and across the infrastructure. Beyond firewalls, micro segmentation, intrusion prevention, vulnerability correction, application control and encryption, all focused on applications, devices, services and data that require protection.
- Artificial intelligence and machine learning provide security resilience
It is estimated that there are 1.3 million new instances of malware every day. And no security solution that detects attacks by searching for specific patterns, such as sequences of known malicious instructions used by malware, can protect the company from these constantly changing threats, no matter how technically advanced. While artificial intelligence techniques are currently being used to help detect evolving malware, there have been significant challenges to distinguish noise levels, retrain latency, select training sets and identify legitimate emerging behaviors.
In 2018 and 2019 so far, skepticism about machine learning increased due to excessively simplistic implementations of security products that did not work as advertised. And although its function is still evolving, machine learning is expected to play an important and continuous role in the safety of the company. In 2020, companies are expected to increasingly turn to machine learning to take advantage of explicit intention and the principle of least privilege, in order to avoid accidental interruptions of legitimate behavior. One of the advantages of machine learning and related technologies is the promise of improving the expressiveness and flexibility of policies. Count on a growing use of data science,
- The cyber security of IoT begins to be real
Several unique aspects of IoT present fundamental challenges for conventional security technologies and methods. Some of its devices are expected to work for decades, extending well beyond the life expectancy and patch delivery services of many current manufacturers. Its manufacturers have very large supply chains and associated ecosystems, which makes the preservation of all parts and software extraordinarily challenging. Finally, their devices can have numerous communication channels, which makes them difficult to completely isolate, and they are often implemented with limited power and processing capacity, so they are unlikely to defend themselves. These considerations, and many others, add to a difficult security scenario.
The manufacturers of the Internet of Things (IoT) are expected to place greater emphasis on standardizing intentional behaviors for all versions of all devices and automating security monitoring, control and detection at the gateways of those devices. Finally, this year will bring a growing emphasis on end-to-end security in all IoT systems, from sensor services to backend and analysis services.
- Governments promote privacy regulations
The US is expected to create regulations on data privacy similar to the General Data Protection Regulation (GDPR) of Europe. With the emergence of the Internet of Things (IoT), driverless cars and a new era of big data regulators. They will recognize that cyberattacks cause more than monetary damage and can now result in personal injury. Governments around the world will act to mitigate the risks.
Expect organizations to prioritize cyber hygiene, rather than focusing wildly on threats, across the company. Companies will focus on technologies such as compartmentalization, less privileges, encryption, robust authentication and patches, all with a greater focus on applications and services such as alignment abstraction, to simplify and improve business security.
However, this also means that the companies that are not focusing on answering some very fundamental questions, which are:
- Are your critical business data safe?
- Is your document management system safe?
- Is your digital workspace safe?
Therefore, we advise companies to partner with suppliers that implement security measures in four crucial stages: Control, Prevention, Destruction and Support:
1) CONTROL: Protect the integrity of the data by ensuring that they cannot be altered in transit or at rest. Take into account input and capture devices, as well as the way data flows through networks and is stored.
2) PREVENTION: Enable secure access to data. Also, ensure that security protocols do not hamper the business in relation to innovation, functionality or productivity. Your firewall is your first line of defense. Look into managed firewall services that provide visibility into the firewall and its effectiveness. You should always be aware of the security threats facing your business.
3) DESTRUCTION: Minimize the risk of loss or theft of data, ensuring regulatory compliance through the effective elimination of information. This is achieved with a Data Overwriting Security System (DOSS), cleaning the device at the end of its shelf life, hard drive layout and memory laundering.
4) SUPPORT: Having a technology provider that provides end-to-end security through an evaluation of infrastructure security, optimization of security in printing environments and document flow and response to security incidents (SIRT).