By David Braue
June 6, 2017
Each of these shines light into the dark crevasses of the modern data infrastructure and helping fill out the overall enterprise security story. It's an approach that sits broadly in line with recommendations from Gartner - which recently flagged an ongoing transformation in security spending and named enhancing detection and response capabilities as a "key priority for security buyers through 2020".
"The shift to detection and response approaches spans people, process and technology elements and will drive a majority of security market growth over the next five years," principal research analyst Sid Deshpande said in a statement.
"While this does not mean that prevention is unimportant or that CISOs are giving up on preventing security incidents, it sends a clear message that prevention is futile unless it is tied into a detection and response capability."
That detection and response capability will, Hooper believes, lay the groundwork for next-generation security architectures that will offer much longer longevity than current solutions simply because they focus on observing all kinds of behaviours rather than trying to detect and stop specific capabilities. AI and machine learning will play a significant role in this, he notes, with increasingly context-aware monitoring able to detect anomalous behaviour regardless of its source or target.
"We're never, ever going to stop this," he said. "It's never something that you can defend against; the 'hard outer shell' theory of 10 years ago is behind us, and tomorrow's world is one where you're looking within. Security is now a living function, and it's visibility that's going to help us get ahead of this."
Source: CSO Australia