Skip to content

Businesses Are Taking Action to Build Strong Cybersecurity

January 4, 2022 – Published on DevPro Journal

Software companies and their users faced serious challenges from cyberattack and ransomware groups in 2021, from the outfall of the SolarWinds attack to the Colonial Pipeline and Kaseya attacks, and to round out the year, groups exploiting the Log4j vulnerability. Industry thought leaders predict that businesses and enterprises will take action in 2022 to build strong cybersecurity strategies and minimize their risks from cyber threats.

While software users deploy new solutions and implement new policies for strong cybersecurity, there are also trends in the software industry to build cybersecurity as well:

More businesses are moving to the Zero Trust model; however, as Joe Leonard, CTO and VP Security Strategy at GuidePoint Security, points out, it also takes a shift in culture and adapting processes to be effective.

“The traditional security model operated with implicit trust where everything was allowed unless it was known to be bad. Zero Trust implements a granular least privilege per-request access, where only those specified as needing access get access,” he says. “Organizations need to educate their employees on why the shift to Zero Trust is needed and relate it to how it can help them be more productive because let’s face it, at the end of the day, employees are focused on doing their jobs much more so than on prioritizing security. It’s critical to educate users on this shift and help them understand how this will ultimately allow them to be more efficient in their job responsibilities.”

When it comes to gaining visibility into third-party software vulnerabilities, GuidePoint’s Victor Wieczorek adds, “With the supply chain attacks that we’ve seen in the last year, the big impact we will see moving forward is that organizations will be focused on trying to understand third-party and open-source libraries that are used in their software development. I think we will start to see more organizations create software bills of materials (SBOMs) for many of their key solutions and include this as a requirement within their procurement process. While suppliers have traditionally been hesitant to share this information in the past, they will be driven because of the inherent risks that an organization is taking on by using that software.”

Read More HERE.