The need for effective cyber security just keeps growing as the years go by. Many of the principles of cyber security date back to the beginnings of IT (or even before). As time goes by, however, the way they are applied changes. With that in mind, here is a quick look at some potential cyber security trends for 2022.
Encouraging new recruits
Currently, IT as a whole has a chronic skill shortage. This shortage is particularly acute in the area of cyber security. The industry has been working to address this but this was never going to be a quick process. Even people who come from an IT or at least technical background need time to get up to speed on the specificities of cyber security. People who are totally new to IT generally need a lot longer.
Realistically, the way forward is probably to upskill existing IT professionals and to encourage new entrants to take up the roles they leave (and then work their way up). If possible, the learning curve should be shortened by, for example, combining intensive training with on-the-job training (and the hands-on experience it offers).
Reviewing working practices
It’s often been said that the mass adoption of remote work created numerous security issues. There may be some truth in this. In many cases, however, it would probably be fairer to say that the mass adoption of remote work exposed latent security issues. Painful as it may be, really getting to grips with them is likely to be a major issue in cyber security over the course of 2022.
Many businesses which operate on-premise networks are likely to need to “unscramble their eggs”. This should help to make them simpler to manage and hence more secure. Many “on-prem” networks have developed over time partly through reaction and partly through anticipation. As a result, they have turned into complex environments with numerous moving parts which really need on-site teams to manage them effectively.
Given that companies are increasingly likely to need or even just want people to work remotely, at least some of the time, moving to the cloud might appear to be the obvious solution. It could well be the right approach for many businesses. At the same time, being in the cloud brings its own security challenges. They just happen to be different ones and often easier for companies to manage remotely. Typical cloud security challenges include access management issues, misconfigurations and insecure interfaces.
Dealing with a growing range of devices
It has been literally decades since desktops were all there was. In fact, it’s been many years since they were the de facto standard. Probably all businesses, even SMEs, make some use of laptops, tablets, mobiles and networked office devices such as printers and scanners.
Increasing numbers of businesses are acquiring more devices connected to the internet of things (IoT) although they may not actively realize it. Workplaces require many of the same practical facilities as homes do. Just as in homes, they are increasingly turning to smart devices to save time and money. These devices offer many benefits. They can, however, also be a security threat.
Dealing with the complexities of managing extended IT infrastructure is likely to be one of the major cyber security trends for 2022. The ongoing pandemic and the adoption of remote/hybrid working are likely to make the challenge even harder.
Responding to old threats in new guises
The days of “spray-and-pray” cyberattacks are probably not quite over but they are certainly becoming increasingly obsolete. Modern cyberattacks are becoming increasingly targeted. Their aim is now less likely to be just to cause havoc and more likely to be economic gain. The ever-increasing number of ransomware attacks is probably the most obvious example of this.
As cyberattacks grow in sophistication, they become more challenging to block with automated tools. It’s therefore vital that all companies ensure that they have robust security policies and that their staff are fully trained in them.