Experts Comments On Gartner Latest Cybersecurity And Privacy Predictions For 2022 And Beyond

BACKGROUND:

Gartner Analysts released their list of cybersecurity and privacy predictions for the next few years, floating a number of potential ideas about how the world will respond to certain problems over the next decade.

Security will begin to play a bigger role in public policy as well by 2025, with Gartner expecting at least 30% of the world’s nations to pass some form of legislation around ransomware. Gartner also expects more regulation centered around ransomware payments as well as fines and negotiations. Cybersecurity will even become a priority for boards, with Gartner adding that by 2025, 40% of boards will have dedicated cyber committees or at least one qualified board member overseeing cybersecurity.

Experts Comments

December 21, 2021
Eyal Elyashiv
CEO
Cynamics

"In a never-ending game against cybercriminals, network security operators must continuously monitor the landscape, they’re burdened with using a myriad of tools that require integrations, knowledgeable personnel to manage and update systems, which is cumbersome, time consuming, expensive and if not closely monitored could expose backdoors. Network operators want to keep pace with advanced technologies and interconnectedness, but this leads to an increase in the attack surface, network

.....Read More

"In a never-ending game against cybercriminals, network security operators must continuously monitor the landscape, they’re burdened with using a myriad of tools that require integrations, knowledgeable personnel to manage and update systems, which is cumbersome, time consuming, expensive and if not closely monitored could expose backdoors. Network operators want to keep pace with advanced technologies and interconnectedness, but this leads to an increase in the attack surface, network complexity, and progresses the thread landscape due to potential vulnerabilities and exposed backdoors. It’s impossible for businesses and governments to get ahead of the curve when they’re deploying reactive cybersecurity -- which is riddled with holes, exhaustive, costly, and not a long-term solution to an ever-ending problem.

Traditionally, network detection and response (NDR) solutions have utilized deep packed inspection (DPI) to manually process traffic across the network. This was sufficient decades ago, but with today’s landscape and increasing connectivity, it's nearly impossible for organizations and governments to adequately monitor the volume and variety of network traffic. Going forward, next-gen NDR solutions must utilize pattern inspection to analyze and monitor network traffic. Organizations will start capitalizing on AI and ML to digest traffic behavior, comparing historical values and trends to identify and predict suspicious patterns. Additionally, solutions that offer sample-based tools to support multi-architecture and multi-environment can collect data from every network device and provide a flow summarization of 100% of the network packets, lowering processing costs, requiring no changes to the network, and imposing no additional risk on organizations."

 

 

  Read Less
December 16, 2021
Craig Ramsay
Senior Solution Architect
Omada

Intelligent unification will be a major trend in 2022 in the Identity Management space – in other words, a meaningful convergence of technologies and identity disciplines. Now, more than ever, organizations have a plethora of solutions at their disposal. Maximizing the capabilities and information available to provide a unified and holistic view of identities, their access, and the contexts through which they have the access will be crucial in reducing identity related risk. By breaking down

.....Read More

Intelligent unification will be a major trend in 2022 in the Identity Management space – in other words, a meaningful convergence of technologies and identity disciplines. Now, more than ever, organizations have a plethora of solutions at their disposal. Maximizing the capabilities and information available to provide a unified and holistic view of identities, their access, and the contexts through which they have the access will be crucial in reducing identity related risk. By breaking down these siloes and sharing information across these boundaries adapting to new identity challenges as they arise will become easier. 

 The sharp uptick in cloud adoption and SaaS offerings will continue across the board, which will make it easier for organizations to increase the services they’re consuming. With this trend in mind, any solution providing Identity Management and/or Identity Governance capabilities must provide versatile configurability to integrate and scale with the future and changing needs of businesses. Combining this configurable flexibility with increased identity analytics means we will start to see intelligent unified governance platforms that enable huge reductions in manual effort in implementing, managing, and interacting with Identity Management processes. 

 This shift to more and more autonomy in these processes is another trend I envisage growing throughout 2022. Right now, Identity Management is stuck in a hybrid of manual and semi-autonomous actions. Whilst there will always be a need for some level of human decision making when it comes to the most critical applications and sensitive data, a unified approach to identity will greatly reduce manual effort. This will be realized through increased automation and intelligent decision support where automation is not suitable.

  Read Less
October 21, 2021
Jake Moore
Cybersecurity Specialist
ESET

Making ransomware illegal has the potential of giving more power to attackers whilst forcing businesses into an even tighter corner. Although the premise of fighting ransomware attacks with a law that chastises the victim into pre planning and promoting extra prevention tactics sounds plausible in theory, the outcome can be very dangerous and even create a double blow. The impact could be that organisations are forced to live with the loss of their data or even have to close their business in

.....Read More

Making ransomware illegal has the potential of giving more power to attackers whilst forcing businesses into an even tighter corner. Although the premise of fighting ransomware attacks with a law that chastises the victim into pre planning and promoting extra prevention tactics sounds plausible in theory, the outcome can be very dangerous and even create a double blow. The impact could be that organisations are forced to live with the loss of their data or even have to close their business in extreme cases.

If this prediction were to be right, businesses will need to act now in order to have the best chance of mitigating an attack. The problem lies with cybercriminals are always looking at ways to circumnavigate current prevention measures and ransomware can often be very difficult to protect from. A far better measure is to constantly help with prevention measures and even help towards costs of protecting businesses rather than fining those who are often just unlucky.

  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.