Cloud Security Expert on Major Security Trends to Come in 2017

January 6, 2017 |
Image of 2017. Cloud Security Expert on Major Security Trends to Come in 2017

Happy New Year!

With the start of the New Year, many enterprises and pundits are peering into their crystal balls to foretell what will be the major security related trends in 2017. I have been around the block a few times, and am fairly well connected in the cyber security community. So I thought I would share a few of my own for 2017 – nothing earth shattering, but things that you should keep in mind when making IT and security related choices for 2017.

Cyber Security Becomes Political

President-elect Trump is battling the US intelligence agencies about Russian election hacking and promoting WikiLeaks founder Julian Assange and there are even some reports of significant reorganization and downsizing of the US intelligence apparatus. It doesn’t take much of a crystal ball to see that politics and cyber security are going to be a major factor in the new President’s administration. As the year progresses, nation states – already involved in cyber warfare – will likely launch (additional) attacks against other countries, not only to cause disruption, but to test their capabilities. Terrorists and hacktivists will also get in on the action, ramping up efforts to publicize their causes.

The Security of the Internet of Things

How do you secure millions of different devices – anything from tooth brushes to drones to cameras to refrigerators? While I have some ideas about that, the simple answer is that it is almost certainly not going to be easy. The Internet of Things (IoT) is going to continue to trend as a major vertical in 2017, but 2017 will also see some of the first directed exploits of these devices. When you consider the vast potential reach of some of these devices, it becomes more than just a hacker trying to figure out the contents of your refrigerator or your teeth brushing habits.

Cyber Security and Compliance in the Cloud

Once upon a time, in the earliest days of the public cloud, there was a general belief that workloads placed in the cloud would not be secure. To this day, the greatest barriers to moving workloads to the cloud are generally security and compliance related.  While those concerns are not going to be alleviated by this blog, I will tell you that – for the most part – the cloud is secure. Or maybe – more appropriately – the cloud CAN BE secure. 2017 will continue to see major cloud companies dropping out of the race (the most recent announced was Cisco’s departure). Amazon and Microsoft continue to dominate this space, and their stranglehold on the market will continue. Third-party security vendors will continue to innovate and fill in the gaps to protect customer workloads migrated to the cloud and meet compliance challenges, giving more and more enterprises the comfort and security necessary to confidently move their data and applications to a public cloud environment, while allowing their C-Table to sleep at night.

The Rise of Software-Defined Perimeter

Yes, this may be a little self-serving, but I firmly believe that 2017 will be the year when software-defined perimeter solutions take the main stage as the future of network and cloud security. Network Access Control (NAC) is yesterday’s technology, and may likely try to evolve to embrace many of the qualities that are SDP. Major network appliance companies are looking at how to adapt their offerings to take advantage to the software-defined perimeter trend. Regardless of the vendor you choose (ahem-cough-CRYPTZONE-cough), software-defined perimeter will be on the radar in 2017.

These are things to be aware of as you formulate your 2017 IT and security planning.  I am looking forward to all that 2017 has to bring, and the exciting changes that are coming to Cryptzone.

Back to Blog Home

Chris Steffen

Christopher Steffen joined Cryptzone in October 2016 as the Technical Director to educate and promote information security and regulatory compliance as it relates to network access management and cloud computing solutions. Before joining the team at Cryptzone, Chris served as the Chief Evangelist – Cloud Security for Hewlett Packard Enterprise (HPE). He has also served in executive roles as the Director of Information Technology at Magpul Industries (a plastics manufacturing company) and as the Principal Technical Architect for Kroll Factual Data (a credit service provider). Steffen has presented at numerous conferences and has been interviewed by multiple online and print media sources. Steffen holds several technical certifications, including CISSP and CISA.

Leave a Reply

Your email address will not be published. Required fields are marked *