Cybersecurity Trends: Optimise for Resilience and Performance

“What is cybersecurity?” It’s the practice of deploying people, processes, policies and technologies to protect organisations, their critical systems and sensitive information from digital attacks. 

How organisations do that is changing radically. 

Staying current on cybersecurity trends and best practices is critical for cybersecurity leaders to effectively manage the fast-evolving daily threats and exposures the organisation faces —  without constraining business ambitions.

The Gartner Top Trends in Cybersecurity 2024 survey finds emerging pressure from: 

• The emergence of generative AI (GenAI) as a mainstream capability

• The continued gap between security-talent supply and demand

• Relentless growth in cloud adoption, which is altering the composition of digital ecosystems

• Increasing regulatory obligations and government oversight of cybersecurity, privacy and data localisation

• Continued decentralisation of digital capabilities across enterprises

• The challenge of managing security exposures in a constantly evolving threat environment

Security and risk management leaders are tasked with improving organisational resilience in a world of increasing risk. Several interconnected factors are driving this focus on resilience, including:

• Digital ecosystems continue to sprawl due to increasing cloud adoption.

• Organisations are entrenching hybrid work arrangements.

• The threat environment continues to evolve as new capabilities embolden attackers.

It’s not feasible to remediate every potential vulnerability in the organisation, given how they are exploding in today’s digital environments. Among the resources to protect are:

• Facilities

• Equipment

• Workers

• Third parties

• Business process outsourcers 

• Technology providers (such as cloud/IT services)

Managing and reporting on resilience involves the entire enterprise and is becoming more challenging due to regulations and customer expectations. The Gartner Top Cybersecurity Trends for 2024 report highlights four activities focused on shoring up resilience.

The increase in digital attack surfaces has left organisations with more potential exposures from self-managed technology vulnerabilities, as well as from cloud-driven applications. Cybersecurity models focused on patching and securing physical and self-managed software systems are not broad enough for today’s environment.

Learn more about cybersecurity threats and how to prioritise, manage and reduce them.

Even as cybersecurity leaders recognize the folly of trying to fully protect against every risk, they are still under pressure to improve security without constraining the business or spending an exorbitant amount of resources. High and ever-improving performance is a key priority.

At the same time, the themes of distributed threat exposure and increasingly decentralized decision making raise an ongoing question: Who is responsible for cybersecurity? The answer is: Everyone. Accountability still falls mostly on the shoulders of cybersecurity leaders. Yet given the spreading nature of risk, there is a growing role for boards of directors and business unit partners to ensure they share responsibility, accountability and governance.

Given those goals of increasing performance within an environment of distributed responsibility, the Gartner Top Cybersecurity Trends for 2024 highlights five investments that promise to help meet the organisation’s cybersecurity needs according to its risk appetite. They include:

GenAI is on the agenda for inclusion across many functions. Cybersecurity leaders are preparing for swift adoption and evolution within the business, as well as within the cybersecurity practice itself. Security operations and application security are two primary areas where providers are adding capabilities using GenAI. New use cases are emerging quickly.

Generative AI’s Impact on Cybersecurity and the CISO’s Role