State of SecOps 2021: 5 Trends That Should Shape Your Security Approach>
Info Security Magazine – Ramses Gallego
Accelerated remote working policies. Shifts in cloud adoption. A global shortage of security professionals. Monitoring security across this growing attack surface is a significant issue, with 40% of respondents in the recent CyberRes 2021 State of Security Operations report considering it their number one concern. Fortunately, businesses are taking action. Businesses recognize the need for additional investment, with 84% increasing their security operations center (SOC) and training spend. Overall, the last year saw a 6.4% growth in security-related spending, with a further 12.4% growth forecasted this year. Remote is the Door, Automation the Lock About 30% considered automating remediation tasks a top use case for automation, while almost a quarter (23%) considered automating the process of reporting risks to executives a priority. Managing the Attack Surface Attack surface management (ASM) is the ability to discover, track, classify, and monitor assets in your network or used by your employees â from laptops to routers, from software to cloud services. while ASM solutions are a relatively new technology, more than half of respondents currently have such efforts in place within their organizations, and about 40% intend to implement them in the next 12 months. Embracing a Remote SOC As the months have passed, SecOps leaders have learned that virtually everything they do can be accomplished remotely and are finding it easier to retain skilled resources now that remote work is acceptable. As a result, weâve seen 85% of organizations increase their adoption of cloud security services and technologies. Red on the Rise More than 93% of those surveyed consider red-teaming an essential activity for security operations. Almost half report their red-teaming results to the board for due diligence, while a third share the results with the CISO as part of risk-and-readiness reporting. Outsource vs. In-House As a result, almost all companies (92%) find that they need to outsource at least some of their SecOps functions. Yet, outsourcing hesitancy is still the rule: Only 24% have fully outsourced 1 to 3 security functions, and only 4% rely on more than three fully outsourced functions.
Link: https://www.infosecurity-magazine.com/blogs/state-secops-2021-5-trends-shape/