Enterprise risk and security leaders consider the ever-evolving threat landscape to be the top-most priority, says Gartner.
The latest report “How to Respond to the 2020 Threat Landscape” from Gartner has revealed that during the next three to five years, security leaders will consider the evolving threat landscape as their top-most priority. In 2020, security and risk management leaders are worried more about the increasing external risk, even though the COVID-19 pandemic showed how these risks could change significantly, and rapidly.
Cybercriminals are always looking to take advantage of uncertain times and crisis situations like the pandemic to exploit new vulnerabilities and move past even the most advanced security controls.
By the end of 2023, over half of the companies will replace older antivirus products with combined endpoint protection platforms (EPP) and endpoint detection and response (EDR) solutions. These solutions are expected to supplement prevention with detection and response capabilities, according to the Security and IAM Solution Adoption Trend Survey that was conducted online during March and April 2020 among 405 respondents from North America, Western Europe, and the APAC region. Moreover, extended detection and response (XDR) capabilities are also expected to emerge, aimed at improving detection accuracy and security productivity.
Cybercriminals used the currently chaotic nature of the evolving work environments to leverage new tactics. This resulted in CISOs and security teams developing new protocols for remote endpoint management. Coronavirus-related business email compromise (BEC) and phishing scams, including SMS phishing (“smishing”), and credential theft attacks, recorded a massive increase since the pandemic, found Gartner.
The healthcare and essential services sector was targeted by increasing nation-state activity from advanced persistent threat (APT) groups along with private enterprises. Hackers and cybercriminals used the scan and exploit technique along with password spraying that attempts to take advantage of unpatched vulnerabilities to obtain personal information, intellectual property, and national intelligence.
Investing in agile solutions
The research firm suggests organizations need to deploy agile security solutions to keep abreast with the changing threat landscape. They should heavily invest in security solutions that are agile and will evolve in step with the increasing changes in threat incidents.
Jonathan Care, senior research director at Gartner, said, “Many organizations waste time on legacy security technologies that have lost efficacy, or continue to needlessly tune effective controls. Rather than trying to anticipate and block all possible threats, invest in solutions to detect and respond capabilities, which can assist with unknown threats and improve response efficacy when prevention fails.”
It is essential for CISOs and risk management leaders to use a continuous and adaptive risk and trust assessment (CARTA) strategic mindset to evaluate vendor products, and learn how they can build up more adaptive defenses with the help of prediction, prevention, detection, and response.
The research firm recommends enterprise security and risk management leaders to adopt several key capabilities that support the increasing volume and variety of personal data by with a three-stage privacy program that follows establish, maintain, and evolves method.