Working in the security industry can be humbling. And frustrating. Not only are you dealing with attacks that change continuously, but you’re also reacting to shifts in the business landscape. In my opinion, the rapid move to cloud is clearly one of the biggest changes to business in the last five years. However, in our race to address the security challenges presented by the journey to cloud and application modernization, we may have made our situation worse.
Let’s break it down.
First, as businesses move workloads onto the cloud, data becomes fragmented across on-premises and multiple cloud ecosystems. For security teams, getting visibility into risk and threats in this data can be daunting. Over the years, many organizations have had to add new tools to solve the problem, even if each tool only solves a singular issue. This has resulted in an abundance of security tools. A study conducted by Forrester Consulting and commissioned by IBM found that 91 percent of organizations are concerned with complexity. On average, organizations are managing 25 different security products or services from 13 vendors.
We have also seen an explosion of security telemetry data, for example, endpoint threat detection, cloud and software-as-a-service (SaaS) services, and other sources. These have fueled the implementation of data lakes in an attempt to bring this data together in a cost-effective way for improved threat and risk detection, but massive data stores can present their own set of challenges.
Finally, all of these tools seem to have amplified another problem: disj ..
Support the originator by clicking the read the rest link below.
