Cybersecurity In 2019-When industry analyst Gartner listed its top 10 technology trends for 2019, one of the primary themes that stood out was cybersecurity. Things continue to move fast on both sides of the equation, with both black hats and white hats evolving the sophistication of their methods and tools. Here are five things I believe will play a pivotal role in cybersecurity in the coming year.
1. Analytics And Automation
The intelligent enterprise of the future will use artificial intelligence (AI) and machine learning to evolve, mature and even disrupt current business practices to get more effective results. Cybersecurity is an area that is ripe for the machine learning evolution where we can take massive sets of data, analyze them, and take action in an automated way or recommend action through insights and patterns developed over time. Protecting against ransomware is a good example of this and is an area that is maturing quickly, as organizations will use AI to identify attempted attacks and problem-solve ways to proactively protect themselves before they even get to the targeted person(s).
2. Cloud And Hybrid Environments
Security concerns used to keep organizations out of the cloud. Now, security is one of cloud’s strongest selling points. There are many reasons for this, including, the sheer ability for these large providers to invest at a magnitude and pace that few consumer companies might be able to. Many companies simply can’t afford to keep up. Another reason is the ability of big providers to aggregate and make use of massive sets of data to identify and address threats. Effective machine learning requires significant amounts of data, and nobody has access to more data than aggregate providers of cloud services. On the other side of this, it also creates aggregated risk and a higher-profile target, which obviously needs to be managed through leading and innovating.
Hybrid environments do create some complexity here as well, which is likely where most companies are today. This will be a continued focus for organizations in the coming year. We need hardware to work seamlessly with software across a variety of platforms to move data securely. That means embedding security controls into applications and data to secure them inside and outside the organization. Building in security from the start should be the default will be a key skill for anyone developing in or managing hybrid environments.
Preparation for the General Data Protection Regulation (GDPR) — the EU’s strict set of regulations on handling personal data — exposed some gaps and opportunities for organizations to develop more robust security practices. While GDPR is aimed at protecting people’s personal information and identities, individuals remain vulnerable, largely due to our reliance on passwords. We need to evolve beyond passwords to create a new perimeter and safeguard around one’s identity. Imagine how eliminating passwords would change hackers’ ability to do harm or compromise a person’s identity.