Blink of an eye on 2017, the two years of the rapid changes in the security industry is a lot of people do not want to see, followed by changes in the enterprise information security sector. Foreign media CSO believes that 2017 should be the following changes.
Security talent shortage still exists?
Many reports have pointed out that there are still a large number of security positions in the market is vacant. For a variety of reasons, companies still can not hire the right security technicians. The current technical problems of Security Department of many enterprises not only need to solve a variety of, but also in a timely manner to all safety warning response, and a lot of complicated security configuration needs them to complete. However, due to the complexity of the security problems faced by the enterprise has not yet reached its peak, so the security department can get the support of human and material resources is extremely limited.
Next, let’s look at how security vendors and research experts predict trends in the information security industry in 2017.
Emergency response capability is critical to security incidents
Exabeam co-founder and CEO Nir Polak said in an interview:
The shortage of security personnel is still not improved, and security needs are rising, the current information security talent pool can not meet the needs of the market. We can see more and more CISO (cisos) will choose to enterprise security to secure third party to be responsible for the company. It is feasible to outsource the task of protecting the security of the basic services of the enterprise to the security company, but when the enterprise needs to respond to the security incident, the problem arises. Safety managed service providers (MSSP) do not understand your company’s internal situation and personnel allocation, you don’t have access to sensitive information, so you can’t expect to give them security emergency response task. Therefore, the incident response can only rely on our own to complete. So, this brings great pressure to the enterprise event response team, many people do not even know what to do in the face of security incidents.
Security capabilities will affect the development of enterprises
Every day there will be a large number of network security incidents, but there are problems in the reserve of security personnel. Therefore, CISO will be more to consider the use of a number of automated security measures, so that not only can improve the security state of the enterprise, but also can temporarily solve the problem of shortage of security technology talent.
A company’s ability to respond to a security incident will be an important measure of insurance coverage. Insurance companies need to measure the customer’s ability to detect and deal with security incidents in the face of security incidents, and to develop appropriate safety insurance terms and conditions according to their capabilities.
Data leakage events will become more common
Not surprisingly, there will be more data leakage events in 2017. These data will be brought out by hackers leak, but also from the company where employees and contractors leak out, because of the internal information of these internal staff can use their powers to gather before the departure of the enterprise (the code repository and other important documents) and personnel data (employee ID information, credit card data and social security etc.), and use these data for their own profit.
中小企业纷纷投向安全托管服务提供商（MSSP）的怀抱 WatchGuard Technologies的首席技术官Corey Nachreiner在接受采访时表示：
Small and medium enterprises have to invest in Corey (Technologies), the chief technical officer of the security custody service provider WatchGuard (MSSP), said in an interview with Nachreiner:
In order to facilitate the map, many small businesses will be hosting their own services in the cloud, and rely on management service providers (MSP) to meet their IT needs. In recent years, more and more small and medium enterprises began to realize the importance of information security, so they also hope that these MSP can help them solve the problem of information security. As a result, many MSP have begun to add security protection services to their list of services, thus deriving the concept of secure hosting service provider (MSSP). Next year, we expect at least 1\/4 of small businesses need to rely on MSSP to provide security services to meet their own security needs, and this proportion will increase year by year.
时代需要CISO和CSO Citrix公司的首席安全官Stan Black认为：
The needs of the times and CSO Citrix, CISO chief security officer Stan Black said:
Maybe there are a lot of companies have started to realize that these companies vulnerable in the financial or medical industry, but if they want to work better in the information age, we must regard themselves as a IT company. In fact, if you want to survive in this era, and maintain their own competitive advantage, then you have to accept this fact, and hire a professional IT technical staff. In fact, companies in any industry should hire security experts to solve the security problems of enterprises, especially the medical sector and financial institutions.
Chief identity Officer (CIdO) this position will appear in 2017
When the enterprise needs to manage the staff, the customer, as well as the third party partner’s identification information, CIdO this role will become the enterprise only to be able to trust the source.
CIdO need to be responsible for maintaining customer information, and monitoring the behavior of the staff, and then all the content to the CEO. This means that, in order to ensure the integrity of the organization’s internal authentication mechanism CIdO, their work will need to cover every step of the organization’s operation. Therefore, CIdO will become a very important key role in the enterprise, they have access to privileged system key, interaction and manage a variety of information in enterprises.
The gap between the new and old employees is bigger
In general, safety technical personnel to join the new nine months to familiar with the situation, that is to say, the new general takes about nine months to become a veteran staff. In the current global market, the safety and technical personnel experienced its worth has an increase of more than doubled, if enterprises want to hire these people, then you need to provide more competitive salaries and higher position.
Time should be spent on the blade
Compared with the past, the increasing complexity of information technology will make us more difficult to protect the security of enterprise network. Coupled with the gaps in security skills and the shortage of talent, the problems we encounter will become more serious. In addition, many technicians spend precious time on tasks that can be done automatically by the device. Therefore, in the upcoming 2017, we hope to be able to solve some of the tedious tasks need to be manually through automation, and help IT experts to complete some fixed task, in order to ensure that they can focus on what they really need in place.
Information and data are important resources for social development. Around the world, the struggle to access, use and control information is becoming increasingly fierce, so information security has become an important factor in safeguarding national security and social stability. Network security has become a major problem and affects the country’s overall situation and long-term interests, but it does not play a powerful guarantee for the information revolution brings high efficiency and benefit, but also an important barrier against hackers.
In short, with the rapid development of network information technology, information security has become very important. At present, China’s information security in the technical aspects of the starting point is low, set up information security only a handful of domestic professional institutions of higher learning, information security technology talent shortage. We should fully understand the importance of information security in the network information era and its extremely broad market prospects, so in the end of the article to drink a chicken soup: to adapt to the times, seize the opportunity!
More exciting, please look forward to.
Sweep the concern of the public, WeChat