8 Ways Cybersecurity Will Change Businesses


By now, most leaders of for-profit and non-profit organizations are fully aware of the need for more cybersecurity measures in the face of a dramatic rise in ransomware and other high-profile cyberattacks.

As a result, spending on security products and services has skyrocketed in recent years as leaders make security a higher priority within their institutions.

But the need for additional cybersecurity hasn’t just changed IT departments. They are literally changing the way businesses operate, from C-suites to charging docks to remote worker home offices.

Gartner recently released its annual “Top Eight Cybersecurity Predictions for 2022-2023” report, based on its monitoring of security-related trends impacting institutions and people around the world.

The list might as well have been titled “8 Ways Cybersecurity Will Change Business,” since most predictions focus on the expected changes that institutions and their leaders will face over the next few years due to cybersecurity. increase in cyber threats.

Below are Gartner’s eight predictions in bold, along with CRN summaries based on Gartner documents and a CRN interview with Sam Olyaei, Gartner vice president and lead author of the predictions.

“Through 2023, government regulations requiring organizations to provide consumer privacy rights will cover 5 billion citizens and more than 70% of global GDP.”

It’s not a surprising prediction since an increasing number of people and institutions are conducting sensitive activities on the Internet – and they want more privacy when they do. Governments are responding to this request. According to Gartner, nearly 3 billion people had access to consumer privacy rights in 50 countries in 2021 – and that number will just continue to grow this year and next.

By 2025, 80% of enterprises will adopt a strategy to unify access to web, cloud and private application services from a single vendor ESO platform. »

It’s ultimately about the consolidation and optimization demanded by customers increasingly frustrated with having to deal with multiple security vendors and other types of technology vendors. Currently, only 20% of enterprises have unified web, cloud services, and private access from a single vendor Security Service Edge (SSE) solution. Expect that to quadruple over the next three years, Gartner says.

“60% of organizations will adopt zero trust as a security starting point by 2025. More than half will fail to take advantage of it”

As Gartner notes, zero trust is not a new security tool, but rather an overarching set of principles dealing with cybersecurity and system access. Therefore, it is not just a matter of vendors installing new security products. It’s also about “cultural change and clear communication” within organizations that embrace zero trust – and most of these organizations won’t fully benefit from zero trust due to an implementation flawed in its practices, says Gartner.

“By 2025, 60% of organizations will use cybersecurity risk as a primary determinant in conducting third-party transactions and business engagements.”

Do you want to do business with another company? Going forward, you better prove that you have taken the necessary steps to improve your cybersecurity posture. “Due to consumer concerns and regulatory interest, Gartner believes that organizations will begin to view cybersecurity risk as an important determinant when conducting business with third parties, ranging from simply monitoring a technology provider critical to complex due diligence for mergers and acquisitions,” writes Gartner.

“Through 2025, 30% of nation states will pass legislation regulating ransomware payments, fines and negotiations, up from less than 1% in 2021.”

It’s kind of like the Wild West right now when it comes to ransomware attacks and targeted organizations making deals with cybercriminals to get their data back. But Gartner believes governments will increasingly impose rules, guidelines, and even outright bans when it comes to dealing with ransomware attackers.

“By 2025, threat actors will have successfully weaponized operational technology environments to cause casualties”

It’s no longer about taking control of the data. Ransomware attacks are now also taking over entire infrastructures. Consider the Colonial Pipeline hack. And Gartner believes that such “weaponized” operational technology (OT) attacks on utilities, factories, hospital emergency rooms, and other key physical sites will cause real loss of life and environmental damage in years. coming.

By 2025, 70% of CEOs will impose a culture of organizational resilience to survive the simultaneous threats of cybercrime, severe weather, civil unrest and political instability. »

From pandemic lockdowns to ransomware attacks to extreme weather events caused by climate change, boards and CEOs are increasingly aware that they live in unstable times – and Gartner believes leaders will demand more and moreorganizational resilience as a strategic imperative” for their institutions.

“By 2026, 50% of C-level executives will have risk-related performance requirements built into their employment contracts.”

How important is cybersecurity in the business world? Significant enough that corporate boards are beginning to insert security-related performance requirements into the contracts of CEOs and other senior executives.Gartner expects to see a shift in formal responsibility for addressing cyber risks from the chief security officer to business executives,” Gartner writes.


Comments are closed.