Industry experts believe that companies that provide essential services, such as data centers and cloud providers, will continue to be targeted by cyber threats. Here, they provide insights into data governance and security in data centers and cloud environments.
- IIn the future of cloud computing, security will be central to the growth of cyber threats: As cyber threats grow, organizations are increasingly taking a hybrid, multi-cloud approach to mitigating vendor concentration risk. With data protection in mind, organizations will also prioritize security designed with a single point of control to gain a holistic view of threats and mitigate complexity throughout the year. future. As companies plan for 2022, they must also remember to prepare for an even longer future. As quantum computing grows stronger and presents potential risks, such as the ability to quickly crack encryption algorithms and access sensitive data, businesses must look beyond short-term threats at 10, 15 and 20 years in the future. —Hillery Hunter, Vice President and CTO, IBM Cloud
- Insider threats represent a new challenge for organizations as the labor market continues to evolve: As the Great Resignation took shape, we saw increasing challenges associated with insider threats. The large number of employees leaving their jobs and potentially still having access to the network or to proprietary data has created a headache for the IT and security teams responsible for protecting the organization. Insider threats have become a distinct new challenge for organizations as they attempt to balance employee turnover, employee onboarding, and the use of unauthorized apps and platforms. In 2022, I expect to see the number of insider threat incidents increase. Attackers will also start targeting employees to carry out their attacks or plant ransomware. As a result, we will see new protocols and guidelines established as organizations strive to protect networks and sensitive data. —Rick McElroy, Senior Cybersecurity Strategist, VMware
- A new security mindset – just assume you’re under attack: Accelerating digitization has led to a proliferation of unmanageable systems including servers, data centers, VPNs, and more. Ultimately, a good practice, especially for large organizations, is to operate on the assumption that you have already been compromised. Companies must rethink their strategies around the fact that they “are” attacked rather than “if” they are attacked. The threat is much more immediate today. —Ambuj Kumar, CEO and co-founder of Fortanix
- The rise of DDoS/ransomware-as-a-service offerings is accelerating the “business” of cybercrime: Cybercrime has become a lucrative and mature market. As a result, we will see stronger strains of existing well-known malware and refined attack strategies emerge, while targets become increasingly ambitious. Public infrastructure and large private companies that provide vital services, such as cloud providers or data centers, are likely to remain high on the list of targets, as the risk of potential ripple effects from an attack (disruptions that affect customers) adds an additional incentive to pay. Organizations should implement an “always-on” approach to network security to ensure rapid, automated responses to attacks, and they should partner with security vendors that continually evolve their defense capabilities. These new best practices prove to be much more cost effective in the long run and will bring peace of mind to organizations. —Carlos Morales, SVP Solutions, Neustar Security Services