Page 168 - Cyber Defense eMagazine January 2024
P. 168
including threat intelligence, incident response capabilities, risk quantification and ongoing security
assessments.
Regulatory bodies and governments are shaping the cybersecurity agenda with regulatory frameworks
that shift accountability to and incentivize enterprises to ensure they have appropriate defenses for critical
vulnerabilities. New U.S. Securities and Exchange Commission (SEC) measures will require cyber
organizations in large, public corporations to disclose cyber incidents that hit a materiality threshold to
the SEC and in financial reports. This is causing an uptick in new financial frameworks and processes,
which in turn will have to be auditable and defensible.
Key Trends and Developments in the Cybersecurity Market
Increased dependence on digital infrastructure and connected systems, the expanded attack surface
created by connected devices, cloud computing and IoT, and the increasingly distributed workforce and
applications work model have accelerated demand for security architecture guidance on cloud, edge,
virtualized implementations, zero trust and endpoint detection and response (EDR).
At the same time, cybercriminals and hacktivists are constantly devising new ways to breach security
defenses. Human-centric security is now a top CISO concern as techniques such as social engineering
and phishing manipulate individuals into revealing sensitive data or granting access to protected systems.
Behavioral psychology can provide insight into employees’ relationships with risk and ensure
cybersecurity awareness education and training is as effective as possible.
These factors reinforce the need for a holistic approach to risk management, harnessing the convergence
of disaster recovery, business continuity and cybersecurity to minimize the impact of security incidents
and ensure critical systems and services are not interrupted.
Other top cybersecurity trends for 2024 will include:
1. Increased adoption of extended detection and response (XDR)
Extended detection and response (XDR) is an architectural approach that facilitates integrated detection
and response capabilities for all internal data sources. Ideally, an XDR approach consolidates multiple
security tools to provide a unified solution that automatically monitors, analyzes, detects and mitigates
threats. This AI-powered approach uses automation to improve the efficiency of security operations,
enabling a cohesive view of threat signals and data across a security environment. XDR vendors use two
main approaches in their offering: open and native.
• An open XDR approach uses an enterprise’s security tools to provide a layer of integration across
silos. Open XDR vendors are required to have extensive integration capabilities. Large
organizations with a comprehensive security stack prefer open XDR to create a single
management platform, regardless of the vendor ecosystem and pre-existing security
environment.
• A native XDR approach involves a single-vendor outlook as an all-in-one platform for security
intelligence, in which the vendor takes responsibility for the set up and integrations, enabling rapid
Cyber Defense eMagazine – January 2024 Edition 168
Copyright © 2024, Cyber Defense Magazine. All rights reserved worldwide.
