Our Top 5 Security Priorities for 2019
"Those who have knowledge, don't predict. Those who predict, don't have knowledge. " -Lao Tzu, 6th Century BC Chinese Poet
With January almost at an end, and, if your social media feeds are anything like my own, you’ll have seen a flurry of “Top 10 Predictions for 2019” type posts which whilst enticing, seem to deliver very little substance. Or even worse, seem to recycle the same predictions from 2009 but with a new coat of paint or a fresh new marketing angle!
Without falling into that trap, here are some of the trends we believe should be on your radar in 2019:
Open source security tools
They’re catching up in terms of quality and they are beginning to scale well. Most organisations should be investigating applicable use cases for tools like Elasticsearch. The caveat here is that you need to have the in-house talent to make the best of their usage, without them merely becoming a distraction to an already over-laden work force. See our last trend for more commentary on this.
IoT (Internet of Things) Security
The OWASP IoT Project is laying the foundations for future success, but it is likely that 2019 will not be the year of IoT security as much as security professionals want it to be. With manufacturing costs so low and a lack of a regulatory framework for connected devices, security will remain an expensive afterthought.
Health Data Breaches
The ADHA (Australian Digital Health Agency) outlined 42 data breaches as reported to the OAIC (Office of the Australian Information Commissioner) in their annual report. With the appetite for health apps remaining high, this is a trend that is likely to continue. Organisations need to ensure good secure development practices are in place to address significant consequences of providing an insecure app that transmits, processes or stores personal and medical data.
On the most recent Gartner Hype Cycle for Emerging Technologies, Machine Learning does not make an appearance for the first time since 2014! But fear not, Deep Learning (a form of machine learning) makes its first appearance and quickly rises to the at the ‘Peak of Inflated Expectations’. It takes time to identify, never mind solve real-world problems and my hope for 2019 is that organisations spend less energy on the exploration of the infinite theoretical possibilities these technologies offer and begin to focus on delivering solutions to actual problems.
Hiring Becomes Harder
The 2018 Cybersecurity Workforce Study shows a widening of employment gap with the shortage of cybersecurity professionals close to 3 million globally. The greatest shortfall is in the Asia-Pacific region with a shortfall of 2.15 million. However, despite the shortage of security talent many recent cyber security graduates find it hard to be hired. This is a paradox we must address as an industry and work towards embracing diversity in our hiring and inclusion in our work practices. In the meantime, look for a trusted partner to help fill the gap whilst the cyber security workforce plays catch-up.
For us here at SecMatters the future isn’t a destination that has yet to be discovered, it’s a journey that we are working on and helping our clients build every day.