Brace for further disruption

< Back to Cyber trust - securing the future landing page

CISOs are also bracing themselves for further disruptors likely to have a (largely positive) impact on cyber security.

Artificial intelligence (AI) has broad possibilities: from building on basic robotic process automation (RPA), to sophisticated machine learning (ML) and analytics, covering increasingly large data sets, interacting ever more frequently with people and core corporate processes.

The new connected world has broken down traditional perimeters, with multiple parties accessing organizations’ data and systems, from anywhere in the world. Add in 5G, edge computing and millions of IoT devices, and cyber security becomes incredibly complex using conventional security approaches. In this environment, the concept of zero trust or Secure Access Service Edge may provide a basis for future security models, founded as they are on the assumption that no one inside or outside the network can be automatically trusted and must prove their identity and access rights before accessing key resources.

We’re used to computers operating in predictable and deterministic ways, with security reviewing fixed algorithms and code. But the growth in machine learning (ML) is posing new questions: How has the ML algorithm been trained and what biases have been introduced? How can we supervise its behavior to ensure it’s operating within parameters? How could it be manipulated by an adversarial AI technique and what would the consequences be? This is a new and immature field, requiring a blend of data science, security and ethics skills.

The democratization of data was meant to remove all boundaries. But as the monetized value of data rises, expect a return to nationalization, as GSK SVP and CISO Matthew McCormack explains: “We will start to see national fences popping up, with countries setting guardrails to protect citizens’ privacy. This makes life harder for security professionals who have to meet newer and tougher regulations on use of data from multiple parts of the world, and may result in companies moving away from flat, global networks to rebuild national castles.”

Zero trust is about knowing where your data is and taking control of access to that data, with strong identity management, advanced analytics and a device inventory. Organizations can learn to better detect unusual behavior and prevent communication with unauthorized apps, servers and accounts.

This kind of thinking can lead, in the words of Darran Rolls, IAM market and technology specialist with over 25 years’ experience as a CTO, CISO, to “Smarter clouds and dumber endpoints, with the endpoints merely offering browser sessions to (hopefully) smarter integrated cloud services.” In such a world, notions such as bring your own device become outdated, as organizations seek greater visibility over network access.

Zero trust and SASE are not just for the security team — they should also apply to those building code and developing infrastructure.