Automotive icon Henry Ford is credited with saying, “If you do what you’ve always done, you’ll get what you’ve always got.”
It rings true for enterprise cybersecurity as properly. It’s thought of commonplace working process for CISOs to spend money on the tried and true “assembly line” of enterprise cybersecurity options: firewalls, intrusion prevention, endpoint brokers, SIEM, SOAR, and so forth.
What do these options have in frequent? They ship a measurable return on funding solely after an lively menace is focusing on a corporation.
Regardless that these product segments account for a number of billions of {dollars} in annual cybersecurity spending, in accordance with Omdia analysis, the fact is that the overwhelming majority of the safety options enterprises use at present are efficient provided that and when a menace is already on its doorstep, or, even worse, has damaged down the door.
Make no mistake, these merchandise do serve an vital objective; menace actors are remarkably artistic, and enterprises won’t ever be capable of keep away from all of the threats more likely to come their approach. However enterprises ought to be capable of keep away from some threats, and positively many greater than they do at present.
The one solution to change the result’s to alter the strategy. That new strategy, one which lastly pulls enterprise cybersecurity out of its conventional defensive posture, is what Omdia has termed Proactive Safety.
Defining Proactive Safety
Omdia formally defines Proactive Safety as applied sciences (together with these offered as companies) that allow organizations to hunt out and mitigate doubtless threats and menace situations earlier than they pose a hazard to the prolonged IT setting.
Proactive Safety creates the chance for enterprises to constantly and programmatically handle the particular circumstances — unknown IT belongings, weak software program, misconfigurations, and the like — that create alternatives for threats to use the prolonged enterprise setting.
Proactive Safety is not a radical idea, however it may be difficult to understand at first as a result of it represents not solely a divergent technological strategy versus what many organizations could also be used to but in addition requires embracing a brand new philosophical strategy to cybersecurity.
From a technological standpoint, lots of the answer classes that Omdia catalogs beneath Proactive Safety, resembling patch administration, cloud safety posture administration, and DevSecOps/pre-runtime safety, are properly established.
However quite a lot of evolving or rising segments, resembling risk-based vulnerability management (RBVM), extended security posture management (xSPM)and incident simulation and testing (IST), amongst others, are rapidly gaining traction as a result of enterprises perceive the rising significance of investing in options that interrupt assaults as early within the assault chain as doable. The perfect strategy is to disrupt assaults earlier than they will ever happen.
In flip, Omdia endorses what it calls a Steady Safety Safety mannequin. By combining conventional preventative and reactive approaches with Proactive Safety, organizations can guarantee their cybersecurity architectures cease lively threats in addition to identification and diffuse menace situations earlier than they will create alternatives for threats.
A New Method of Considering
From a philosophical standpoint, Proactive Safety encourages enterprise cybersecurity decision-makers to rethink what profitable safety packages appear to be, particularly within the context of cybersecurity danger discount.
A Proactive Safety technique requires growing a full view of a corporation’s assault floor; measuring cybersecurity risk-based, partially, on distinctive enterprise context; and programmatically executing on prioritization and remediation.
This philosophical strategy to Proactive Safety won’t solely function a way of maturing key processes associated to defining and measuring cybersecurity danger, but in addition allow organizations to constantly scale back cybersecurity danger in a demonstrable approach, whereas additionally supporting broader enterprise danger administration efforts.
Omdia believes that enterprises ought to and can improve the share of their cybersecurity know-how budgets allotted particularly for Proactive Safety options. Proactive Safety is the undercurrent behind a complete new wave of business innovation that may assist organizations develop into extra resilient; it is also the long-missing technological strategy that may allow organizations to cut back cybersecurity danger and enhance cybersecurity outcomes.
For all enterprises, Proactive Safety might be a journey; for some, it is going to include the necessity for vital change. Totally different approaches all the time do, however there may be little query that the business as a complete is raring for a greater strategy that may scale back the variety of probably profitable assaults that organizations face.
The period of Proactive Safety is right here, and it’s lengthy overdue.
For extra data on Proactive Safety, learn the Omdia analysis report, “Fundamentals of Proactive Security,” from analysts Eric Parizo and Andrew Braunberg (Omdia subscription required).
Author: Eric Parizo, Principal Analyst, Omdia
Date: 2023-09-26 10:00:00
