Top Cybersecurity Trends for 2018
https://www.netcomlearning.com/webinars/?advid=1315
Agenda • Prediction #1: Identity becomes the New Perimeter • Prediction #2: Passwords will (finally) die • Prediction #3: Every security vendor is an analytics vendor • Prediction #4: Cloud security will converge - and it’s already happening
https://www.netcomlearning.com/webinars/?advid=1315
Security tools are multiplying like rabbits!
• >1600 vendors • 9 new vendors every month
https://www.netcomlearning.com/webinars/?advid=1315
Too many security point products • Most firms can’t keep up with securing legacy, on-prem estate : • • • • • • •
AV FW IPS DLP WAF SIEM IAM
https://www.netcomlearning.com/webinars/?advid=1315
INFORMATION SECURITY: BUDGETS AND OUTLOOK 2016 60.1% 58.8%
Software-as-a-Service (SaaS)
Cloud Services Deployment Information Security Respondents
Q19. Which of the following types of cloud services, if any, does your organization currently use?
43.6% 36.6%
On-Premises Private Cloud
33.6% 30.2%
Hosted Private Cloud
31.5% 37.4%
Infrastructure-as-a-Service (IaaS)/Public Cloud
18.0% 23.5%
Platform-as-a-Service (PaaS) None of the Above (Do Not Currently Use Cloud Services)
14.5% 14.9%
Percent of Sample Q4 2015 (n=855)
Q4 2016 (n=497)
https://www.netcomlearning.com/webinars/?advid=1315
CLOUD COMPUTING Q3 2015 Implementation Status – Overall Information Security Respondents
Network Firewalls (n=852) Encryption (n=846)
Q52. What is your status of implementation for the following technologies?
2 %
95 %
5% 5% 6% 2% 9% 6% 7% 8% 3% 7%
72%
Vulnerability Management (Scanning) (n=849)
69%
Information Security Awareness Training (n=850)
62%
10%
9% 7% 3% 9%
Computer Forensics/Incident Response (n=847)
51%
7% 7%
Web Application Firewall (WAF) (n=848)
51%
8% 5% 10% 4%
51%
8% 7%
Multifactor Authentication (n=848)
47%
Single Sign On/Identity as a Service (n=846) Endpoint Data Leakage Prevention (DLP) (n=846)
34%
12% 5%
11% 4%
9% 5% 14% 8%
8%
17%
6%
In Use Now Project is Underway (Budget is Allocated) In Near-term Plans (In Next 6 Months) In Long-term Plans (6-18 Months) Past Long-term Plans (Later Than 18 Months Out) Not in Plan
https://www.netcomlearning.com/webinars/?advid=1315
5%
17% 22% 19% 18% 26%
We keep doing the same things over and over…. • Security has historically been about keeping the bad guys out. • We spend the bulk of our security dollars on perimeter defenses. • But building higher walls isn’t working
https://www.netcomlearning.com/webinars/?advid=1315
CLOUD COMPUTING Q3 2015 Top Priorities in Cloud Security
37.4%
Encryption
31.7%
Identity Management
30.5%
Data Leakage Prevention (DLP)
Q23. What are your top priorities in terms of securing your current IT environment that is being delivered via Cloud?
27.5%
Multi-Factor Authentication
26.3%
Intrusion Detection/Prevention Systems (IDS/IPS)
26.2%
Security Information & Event Management (SIEM)
24.2%
Vulnerability Assessment
20.9%
Firewall (including Next Generation Firewall)
18.9%
Endpoint Security (e.g. Anti-virus)
17.4%
Forensic/Incident Response Anti-Distributed Denial of Services (DDoS) Web Application Firewall (WAF)
11.3% 8.0% Percent of Sample
n = 760
https://www.netcomlearning.com/webinars/?advid=1315
Prediction #1: Identity becomes the New Perimeter
https://www.netcomlearning.com/webinars/?advid=1315
A New Approach toIdentity Old Mindset
New Approach
Only trust devices where you manage the OS
Manage and secure apps and content
Device Trust established by the Domain
Device Trust established through enrollment
Access Controlled by Network Management
Access Controlled by Identity Management
https://www.netcomlearning.com/webinars/?advid=1315
Prediction #2: Passwords will (finally) die • But we all know the limitations of passwords • Hard to remember • Easy to crack, etc. • Can be expensive • 20%-50% of all help desk calls for resets • But passwords are like cockroaches: • They never seem to die
https://www.netcomlearning.com/webinars/?advid=1315
But MFA has its own challenges • Can also be expensive • Inconvenient • Tough for developers • Tons of standards: OAuth, OIDC, FIDO, etc.
https://www.netcomlearning.com/webinars/?advid=1315
MFA should be risk-based • There is no ‘single authenticator to rule them all’ • MFA is typically ‘blind’ post-login • Analytics can provide context to assess if a credential has been compromised.
https://www.netcomlearning.com/webinars/?advid=1315
Prediction #3: Every security vendor is an analytics vendor • Endpoint security • Network security • Identity management
https://www.netcomlearning.com/webinars/?advid=1315
Proliferation is rampant in cloud security, too • Secure Web Gateways
• SaaS encryption gateways • CASB
• IaaS security • SSO/IDaaS
• = CONSOLE FATIGUE! https://www.netcomlearning.com/webinars/?advid=1315
Prediction #4: Cloud security will converge - and it’s already happening • Internal development – the race is on • Partnerships • M&A • Native services from cloud providers
https://www.netcomlearning.com/webinars/?advid=1315
To Recap: • Prediction #1: Identity becomes the New Perimeter • Prediction #2: Passwords will (finally) die • Prediction #3: Every security vendor is an analytics vendor • Prediction #4: Cloud security will converge - and it’s already happening
https://www.netcomlearning.com/webinars/?advid=1315
Recorded Webinar Video To watch the recorded webinar video for live demos, please access the link: https://bit.ly/2v5v7Dh
https://www.netcomlearning.com/webinars/?advid=1315
About NetCom Learning
https://www.netcomlearning.com/webinars/?advid=1315
Recommended Courses » CompTIA Cybersecurity Analyst (CySA+) Certification - Class scheduled on April 30 » Implementing Cisco Cybersecurity Operations - (SECOPS) - Class scheduled on April 23 » CompTIA Security+ Certification (Exam SY0-501) - Class scheduled on April 23 » CISSP Certification Prep - Class scheduled on April 16 » EC-Council CEH: Certified Ethical Hacker v9 & CNDA: Certified Network Defense Architect Class scheduled on May 14
https://www.netcomlearning.com/webinars/?advid=1315
Expedite business productivity with CRM & ERP integration Explore the Machine Learning Code Adobe InDesign for Beginners Office 365: How to Unite the Workforce in the Cloud An Introduction to Software Defined Networking (SDN) Develop Your AI Strategy with These Trends in Mind Get Your Head in the Cloud: The Growing Importance of Cloud Certifications https://www.netcomlearning.com/webinars/?advid=1315
https://www.netcomlearning.com/webinars/?advid=1315
https://www.netcomlearning.com/webinars/?advid=1315
THANK YOU !!!
https://www.netcomlearning.com/webinars/?advid=1315