IT Security Essential Body of Knowledge (EBK)

With the growing dependency on advanced in various fields and the new domains that it is opening up, the risk meter lies precariously close to the danger zone. are spending increasing amounts to ensure the security of their data. With the level of sophistication and frequency of the advanced attacks on the rise, has listed out a few information security trends that will dominate the business world over the next one year.

1. Cloud access security brokers access brokers enable the enterprise to increase control as it’s users access cloud resources. They are on premises/cloud based security policy enforcing points between end users and providers of cloud based services.

2. Adaptive access control It is a form of context aware access control, viz, a form in which the access decisions reflect current conditions. It tries to balance the level of trust & risk, using dynamic risk mitigation techniques. It allows access from anywhere and any device.

3. Pervasive sandboxing Sandboxing or content detonation will show embedded ability to run executables and monitor content in VMs for signs of security compromise. Fast becoming a fixture in the more capable platforms, it will prove useful in minimizing the extra filtration of sensitive data by and intrusive capabilities of hackers.

4. Endpoint detection and response solutions EDR is an emerging market for advanced continuous protection to end users. It displays efficient security monitoring, threat detection and incident response. It stores the data in a centralised database and has an analytics tool, which aides in early detection of threats and remedial actions.

5. Big data security analytics Big data security analytics is becoming a core capability of the emerging security platforms. Gartner predicts that almost 40% of the enterprises will have Security data warehouses for storing the data from continuous monitoring of data and computing entities.

6. Machine readable threat intelligence For the next generation security platforms, one of the critical aspects is integrating external Co text with intelligence feeds. In the future, the third party sources of machine readable threat intelligence is expected to rise significantly along with the reputation services. Reputation services are the services offering real time trustworthiness of entities like devices or end users as well as IP addresses and URLs.

7. Containment and Isolation As signatures become obsolete in stopping cyber attacks, the virtualization and isolation of all unknown programs is becoming the key in the in-depth security analyses and platforms. Containment and isolation technique is supposed to be the chief strategy in dealing with the futuristic cyber threats, which will isolate all unknown programs and deem them as potential threats.

8. Software defined security Software defined security is the product of the decoupling of traditional hardwares and infrastructure devices. It is the transfer of value and intelligence from the traditional data a centres to software.

9. Interactive applications security testing (IAST) It combines both the static application security testing (SAST) and dynamic application security testing (DAST) for efficient results. As it combines the finer points of both SAST and DAST, IAST provides more effective security testing solutions.

10. Security solutions for operational technology The asset-intensive enterprises like manufacturing etc have operational technology solutions. The technology which used to be proprietary communication is now evolving into IP-based networks that focus on automation of the assets of manufacturers, based on commercial softwares. As the dependency on the OT is increasing, so is the need for advanced security solutions for the operational technology.