This post is part of our 2023 cybersecurity prediction series.
George Gerchow, CSO and SVP of IT, Sumo Logic
The human element of remote work will be most challenging.
Organizations got a crash course in hybrid and remote work at the start of the pandemic. While many of the related security and technology issues have been ironed out, some of the remaining challenges aren’t about technology. One concern is employee mental health and another is creating the right processes and procedures to access the infrastructure. Additionally, the threat landscape is beyond the enterprise perimeter, making it difficult to identify employees and detect behaviors. Employees are going to continue to use devices for both personal and professional purposes, increasing risk but also improving productivity.
The SOAR market isn’t shrinking but integrating with other platforms.
Security orchestration, automation and response (SOAR) will continue to exist but will be increasingly absorbed into other security platforms and the term will die out as it becomes baked into overall security. SOAR will converge with security information and event management (SIEM) and acquisitions will continue to contribute to vendor consolidation.
Security leaders believe playing offense is the best defense.
Some adages may be old, but they’re still relevant for today’s security leaders. “The best defense is a good offense” and “You have to be right one hundred percent of the time, and the bad actor only has to be right once.” Cybersecurity is by nature defensive, but experts say you should also make it a point to be on the offense.
Erez Barak, VP of Product Development for Observability, Sumo Logic
APM isn’t dead–just different.
Application performance monitoring (APM) is dead or dying in its current state and as a stand-alone market, but it’s still useful and necessary as a practice. While observability is the goal, APM is still a necessary part of the big picture. APM grew from an on-premise environment, so with mobile applications running everywhere, observability can be considered the new APM.
Prepare for Everything-as-Code.
Everything is becoming applications and code, meaning automation will be everywhere. Developers will have more control and manageability over applications, so there will be increasing demand for APIs
everywhere to enable everything possible to be as-code.
Why you need SLOs for observability.
Reliability Management is about having insights through service level objectives (SLOs) for better visibility into application and system performance. With this level of insight, teams can reach the best cadence of new feature releases while maintaining optimal application and system stability.
###