Advertisement

Top 5 security and risk management trends for 2019: Gartners

Top 5 security and risk management trends for 2019: Gartners
Threat detection investment, security aligning to business goals and passwordless authentication are among the top trends in security and risk management, according to Gartner.
Follow these trends to keep your business safe and secure.

Security and risk management are two of business’ biggest considerations in today’s increasingly volatile cyber security landscape — failings in this arena will lead to potentially irreversible financial and reputational damage. Jobs are even at risk, such are the stakes.

“External factors and security-specific threats are converging to influence the overall security and risk landscape, so leaders in the space must properly prepare to improve resilience and support business objectives,” said Peter Firstbrook, research vice president at Gartner.

According to Gartner,  these seven security and risk management trends for 2019 represent ongoing strategic shifts in the security ecosystem that are not yet widely recognised, but are expected to have broad industry impact and significant potential for disruption.

Trend #1: Risk appetite statements are becoming linked to business outcomes

As IT strategies become more closely aligned to business goals, the ability for security and risk management (SRM) leaders to effectively present security matters to key business decision makers gains importance.

“To avoid exclusively focusing on issues related to IT-decision making, create simple, practical and pragmatic risk appetite statements that are linked to business goals and relevant to board-level decisions,” said Firstbrook. “This leaves no room for business leaders to be confused as to why security leaders were even present at strategic meetings.”

Advertisement

Trend #2: Security operations centres are being implemented with a focus on threat detection and response

The current shift in security investments from threat prevention to threat detection requires an investment in security operations centres (SOCs) as the complexity and frequency of security alerts grow.

According to Gartner, by 2022, 50% of all SOCs will transform into modern SOCs with integrated incident response, threat intelligence and threat-hunting capabilities — up from less than 10% in 2015.

“The need for SRM leaders to build or outsource a SOC that integrates threat intelligence, consolidates security alerts and automates response cannot be overstated,” said Firstbrook.

Trend #3: Data security governance frameworks will prioritise data security investments

Data security is an increasingly complex issue that can’t be solved without a strong understanding of the data itself: the context in which the data is created and used and how it is subject to regulation. According to Gartner, rather than acquiring data protection products and trying to adapt them to suit business needs, leading organisations are starting to address data security through a data security governance framework (DSGF).

“DSGF provides a data-centric blueprint that identifies and classifies data assets and defines data security policies. This then is used to select technologies to minimise risk,” said Firstbrook. “The key in addressing data security is to start from the business risk it addresses, rather than from acquiring technology first, as too many companies do.”

Advertisement
Get 20% off AVG Internet Security Unlimited! Banking, browsing, shopping; extra protection for you.

Trend #4: Passwordless authentication is achieving market traction

Passwordless authentication, such as Touch ID on smartphones, is starting to gain traction in the market. The technology increasingly being deployed in enterprise applications for consumers and employees, as there is a significant supply and demand for it.

“In an effort to combat hackers who target passwords to access cloud-based applications, passwordless methods that associate users to their devices offer increased security and usability, which is a rare win/win for security,” said Firstbrook.

Trend #5: Security product vendors are increasingly offering premium skills and training services

The cyber security skills shortage is growing. And, according to Gartner, the number of unfilled cyber security roles is expected to grow from 1m in 2018 to 1.5m by the end of 2020.

Advancements in artificial intelligence and automation will reduce the need for humans to analyse standard security alerts, but sensitive and complex alerts require the human eye.

“We are starting to see vendors offer solutions that are a fusion of products and operational services to accelerate product adoption. Services range from full management to partial support aimed at improving administrators’ skill levels and reducing the daily workload,” said Firstbrook.

Leave a comment

Make sure you enter all the required information, indicated by an asterisk (*). HTML code is not allowed.

back to top

Top Cyber News

Apple Speaks About Recycling iPhones Via Robot

Apple Speaks About Recycling iPhones Via Robot

19 April, 2019

Apple has spoken about its effort to become even more environmentally friendly, by offering an insight into its normally...

AI Startups on the rise in Europe

AI Startups on the rise in Europe

14 March, 2019

MMC Ventures a venture capital firm recently released a report, in association with Barclays, shows that one in 12 new s...

Nearly all Europes operators to offer 5G services to sport events’ organisers

Nearly all Europes operators to offer 5G services to sport events’ organisers

13 March, 2019

The study is based on a survey of C-level and other senior decision makers from 60 of the world’s 100 largest operator...

Just under half of A.I. start-ups in Europe have almost nothing to do with A.I., research finds

Just under half of A.I. start-ups in Europe have almost nothing to do with A.I., research finds

05 March, 2019

Nearly half of the companies in Europe that call themselves AI start-ups don't in fact use artificial intelligence, a ne...

Fibre reacts autonomously for the first time to changing net conditions

Fibre reacts autonomously for the first time to changing net conditions

06 March, 2019

The live field trial showcased fibre optic transmission systems autonomously adapting to changing network conditions in ...

Cyber Threats can target 20% of home PCs running worldwide: Says report

Cyber Threats can target 20% of home PCs running worldwide: Says report

12 March, 2019

According to the intelligence gathered from Avast Threat Detection Database, one in five home PCs running worldwide ar...

Categories

External Links

About Us

Follow Us