What are the top cybersecurity trends to look out for in 2024?
As 2024 fast approaches, organizations are looking back on the past year to try and gain some insight into what the next 12 months could hold. This past year has been particularly interesting in the world of cyber security, with ransomware and data breaches dominating the headlines, the rise to prominence of AI strengthening cybercrime’s arsenal, and the shift of focus to cyber resilience causing businesses to question what comes next for the industry.
For security professionals across organizations of all sizes we anticipate the following issues will be a key focus for the year ahead:
Increased focus on cyber resilience
With the reality that every organization will almost inevitably suffer a cyber-attack at some point, the ability to recover with the least amount of downtime and data loss will be a priority. Organizations are coming around to the harsh reality that focusing on cybersecurity that centers on preventing attacks is not infallible. The ability to quickly recover from an attack, while minimizing the impact on the organization will be a strategic objective.
The cyber skill shortage will continue
The shortage of talent with the necessary knowledge and skills to protect organizations from cyber threats continues to be an ongoing concern. According to the 2023 ISC2 Cybersecurity Workforce Study, the cybersecurity workforce has grown by 8.7 percent, but the gap between the number of workers needed to the number of available openings grew 12.6 percent year on year. This indicates that growth in the number of cybersecurity roles is still outpacing talent pool growth.
Increasingly sophisticated phishing and social engineering attacks
Malicious actors will continue to up their game when it comes to manipulating users through social engineering. Generative Artificial Intelligence (AI) enables these bad actors to carry out more intelligent and personalized phishing campaigns against their unwitting victims. In addition, deepfake technology is continuing to advance, making it increasingly more difficult to discern whether something such as an image or video is real.
Increased focus on cybersecurity by corporate boards
Cybersecurity is increasingly recognized as a business risk, becoming a strategic priority for organizations. Coupling this with the trend toward board members having explicit accountability for cybersecurity necessitates an increased focus by corporate boards. By 2026, Gartner predicts that 70 percent of boards will include one member with cybersecurity expertise.
Increased adoption of Zero Trust Frameworks through ZTNA and SASE
With the ever growing remote and mobile workforce, coupled with application sprawl across on prem, public cloud and SaaS, organizations are finding it hard to maintain secure, consistent, and performant policy across their remote users and applications.
Leveraging Zero Trust Network Access (ZTNA) and Secure Access Service Edge (SASE) allows an organization to extrapolate their access layer from their data center, allowing users to ingress to the closest onramp wherever they are in the world. Through a single interface, organizations can granularly control application, network and internet access while enhancing security protection such as secure web gateway and browser isolation.
Couple the ability to prevent malicious scripts with the ability to onramp to clouds, enforce data loss prevention, and secure inbound application traffic through reverse proxy, web application firewall and DDoS protection, more companies will most likely be moving to centralized ZTNA and SASE designs in 2024.
Ultimately, as threat actors gear up to use the new technologies that are at their disposal, companies will be exploring ways to stay a step ahead while preparing to withstand potential breaches and attacks with minimal downtime.
Johnny Carpenter is General Manager EMEA 1111Systems.com.