Cybersecurity 2023. Three insights on how the approach to data storage will change

Focus He translated an article by Ömer Singer on how modern data structure and understanding of cyber security will change.

Prediction 1: Cybersecurity will finally be part of the modern data pile

In 2023, more cybersecurity professionals will start using modern cloud-based repositories that provide a single view of all security data, as well as business and IT data, significantly increasing the overall security level of the organization. Gartner and Forrester have already called this an emerging trend, and I expect it to become even more relevant next year.

Security repositories will no longer be “do-it-yourself projects” based on Hadoop (a set of libraries for deploying operations and functions in the cloud) – Focus) and craft tools. The latest updates to leading security products allow you to work directly on top of your existing enterprise cloud data platform. This makes it easy for cybersecurity teams to use the same data platform as the rest of the organization. The compact nature of today’s stack with a cloud data platform at its core will increase cost savings, while better data analytics capabilities will provide security teams with more accurate insights.

Prediction 2: OCSF will become the neutral standard for security data

In 2023, we will see increased support for the Open Cybersecurity Schema Framework (OCSF), an open source project designed to create a unified and vendor-neutral data model for security information. Nearly two dozen security and technology companies have already joined the project, and next year we will see more leading vendors adopt it as the industry’s security standard.

OCSF solves key issues for security departments, such as managing an array of security tools as well as increasingly complex environments from clouds to home offices. Collecting and processing data from these sources takes time and money, slowing the response to threats. For data producers and consumers, the open OCSF standard, with its simplified classifications, accelerates data collection and analysis for security teams, which will be beneficial as more companies start supporting this technology next year.

Prediction 3: Board members will demand timely and actionable safety performance

With the advent of cloud-based security data repositories, it will be much easier to generate near real-time reports on critical security metrics. We’re already seeing increased interest in this type of data at the executive level, and in 2023 board members will demand even more transparency in quantitative data about a company’s security status, weaknesses, and pace of development. In other departments this has long been the standard, but cybersecurity still lags behind in terms of transparency.

Given the ever-increasing monitoring of companies’ security-related activities, quarterly reports and PDFs are no longer enough. Administrators need near real-time dashboards to delve into and evaluate an organization’s security posture, including incident response times, patch delays, asset inventory completeness, third-party risk management, and employee termination.

In addition, the fact that many executives sit on more than one board of directors at the same time means that this practice will quickly spread to all organizations. The company-to-business data sharing is expected to be used to make comparisons with peers and to keep managers informed of how their progress is compared to other companies. Cooperation between security services needs to be monitored to ensure timely and manageable data exchange. This will allow the exchange of key indicators within information security departments while preventing the leakage of confidential information.

about the author

Ömer Singer is Head of Cybersecurity Strategy at Snowflake.