Gartner Profile picture
We deliver actionable, objective insight that drives smarter decisions and stronger performance. Community guidelines: https://t.co/YoE73lYEBj

Jun 8, 2022, 22 tweets

Live from #GartnerSEC | Top Trends in #Security and #RiskManagement With Gartner VP Analyst Jay Heiser.

Follow along for highlights 👇

What to expect: We'll discuss the top trends in business, market & tech that security and risk management leaders cannot afford to ignore. These trends have the potential to transform the #security ecosystem & will accelerate their adoption over the next 1-3 years. #GartnerSEC

"As security and risk management leaders, it's up to you to help the rest of the organization to make good decisions about what they are and are not going to do." We need to focus on 7 trends to do that well. #GartnerSEC

"It's important for the organization to know what we do, but it's just as important to make sure the organization knows what we don't do." #GartnerSEC

Trend 1: Attack Surface Expansion. #GartnerSEC

A dramatic increase in attack surface is emerging from changes in the use of digital systems, including new hybrid work, accelerating use of public #cloud, more tightly interconnected supply chains, expansion of public-facing digital assets, & greater use of operational tech.

Trend 2: Identity Threat Detection and Response (ITDR). #GartnerSEC #Security #riskmanagement

"We're going to see much more attention on identity. Put new emphasis on prioritizing the security of identity infrastructure."

ITDR describes the collection of tools and best practices to successfully defend identity systems from endemic levels of attacks. #GartnerSEC #Security

Trend 3: Digital Supply Chain Risk.

The risks generally fall in 4 main categories:
- What data you share
- What infrastructure you share
- What you buy
- What you make

#GartnerSEC #Security #SupplyChain #riskmanagement

How to address the 4 risks:
- Focus on resilience
- Collaborative partnerships
- SC inventory & risk-based segmentation
- Focus on government mandates
- Focus on transparency & evidence of #security controls

#GartnerSEC #riskmanagement

As widespread vulnerabilities such as URGENT/11 and Log4j spread throughout the supply chain via reuse across all types of technology stacks, more attacks will emerge. Create an action plan and stick to it. #GartnerSEC

Trend 4: #Cybersecurity products are consolidating.

#GartnerSEC #Security #riskmanagement

"Security technology convergence is accelerating, driven by the need to reduce complexity, leverage commonalities, reduce administration overhead and provide more effective #security." #GartnerSEC

"Take a strategic approach and look for products that can strengthen each other instead of products that will stretch out your capabilities too far." #GartnerSEC

"#Cybersecurity mesh creates and leverages interoperable connections between security tools to promote a consistent security posture, allowing tools to share and leverage security intelligence and apply a dynamic policy model." #GartnerSEC

Trend 6: Distributing Decisions.

#GartnerSEC #Security #riskmanagement

What flavor of #CyberSecurity leader does your organization need? #GartnerSEC

By 2025, a single, centralized #CISO will no longer be sufficient to manage the #cybersecurity needs of a digital organization. #GartnerSEC

Trend 7: #Security training evolves beyond "awareness" training. #GartnerSEC

Human errors continue to feature in the majority of data breaches, a clear signal that traditional approaches to security awareness training are no longer effective. #GartnerSEC

In summary, Gartner recommends taking these steps to address the top trends in #security and #riskmanagement. #GartnerSEC

Share this Scrolly Tale with your friends.

A Scrolly Tale is a new way to read Twitter threads with a more visually immersive experience.
Discover more beautiful Scrolly Tales like this.

Keep scrolling