As 2022 draws to a close and organizations begin planning and prioritizing their cybersecurity goals and budgets for the new year, experts from Zero Trust segmentation company Illumio discuss the future of cybersecurity and what organizations can expect in 2023. share thoughts about
In summary, Illumina warns of positive actions such as increasing threats to healthcare and energy, the integration of security teams and technology within enterprises, and the introduction of new cybersecurity regulations and measurements by enterprises and governments.
“2023 will see an influx of oversight boards dedicated to cybersecurity as companies seek to mitigate risk. Objectively, establish a set of baseline expectations to which the business is accountable: they are tasked with both monitoring oversights and adding direction, with cybersecurity a top 5 strategic function Boards also demand more actionable data about an organization’s cybersecurity posture to inform decision-making, with security teams identifying threat actors and Leverage new and better ways to quantifiably model defenses (think: broader penetration testing), said Raghu Nandakumara, Head of Industrial Solutions at Illumino. says.
“Stopping a breach from happening will no longer be an accurate measure of cyber success. As breaches become part of everyday life, cyber resilience is an industry-recognized goal that every company achieves and takes action against. While organizations today measure the success of their business continuity plans by being able to recover from recovery time objectives (RTOs) to recovery point objectives (RPOs), in 2023, no downtime Rigorous testing and the development of industry-wide metrics to help benchmark against peers and help understand what “success” looks like will help organizations understand their risk tolerance. A minimum acceptable level of maintainable security must be established to avoid any thoughts, fines, loss of profits, or payments. Defamation. ”
His colleague Trevor Dearing, Director of Critical Infrastructure Solutions at Illumina, adds: As services are more important than ever, the sector is facing attacks from state-sponsored attacks, criminal gangs and activist groups trying to stand up to those who continue to profit from rising prices. will receive. The proliferation of connected devices and open Wi-Fi connections within the healthcare environment has allowed attackers to compromise medical technology such as monitoring equipment and pacemakers to create new and more targeted attacks against individuals within hospital facilities. It is also possible to launch a powerful attack. As a result, organizations are looking for new ways to thwart disruptive attacks and maintain the availability of critical services. ”
“As the economic climate puts pressure on budgets and resources, it will drive more consolidation in the number of security tools and cybersecurity teams used. One area where this applies is between IT and OT security. This is driven by the requirement to reduce the cost of large-scale proprietary OT development and to integrate OT into their existing IT cyber strategies.As environments become increasingly connected, organizations are Requires a more unified and structured approach to cybersecurity, prioritizing increased visibility and oversight to reduce cyber risk Organizations have separate teams for IT and OT security It no longer makes sense, and this separation exposes organizations to even greater security threats.”
Illumino’s third expert, Adam Brady, director of EMEA Systems Engineering at the company, said: So the only way to eradicate ransomware is to stop ransomware payments altogether. There is no doubt that the legal debate will begin to take shape.At the same time, cyber insurers will become increasingly reluctant to continue paying claims and will seek to tighten policy eligibility requirements. Incident response practices. ”
“By 2023, attention will shift from perimeter defenses and choosing the most ‘bulletproof’ IT infrastructure model to containment of breaches. The industry will accept that security breaches will continue and evolve their security strategies to take this into account. On-premises, hybrid, cloud or edge, it doesn’t matter anymore. The key is to maintain visibility across your assets. Organizations need to know where vulnerabilities lie in their environment and proactively implement policies to contain breaches early and limit damage. Ultimately, containment of breaches will be his new resilience paradigm for 2023. ”