Conference Updates

India, March 18, 2021

Gartner Security & Risk Management Summit India: Day 2 Highlights

We are bringing you news and highlights from the Gartner Security & Risk Management Summit, taking place this week virtually in India. Below is a collection of the key announcements, and insights coming out of the conference. You can read the highlights from Day 1 here.

On Day 2 from the conference, we are highlighting the latest developments in the privacy landscape, security trends for midsize enterprises, and the challenges of enabling users to access corporate resources in a post-COVID-19 world. Be sure to check this page throughout the day for updates. 

Key Announcements

Outlook for Privacy 2021

Presented by Nader Henein, VP Analyst, Gartner

New privacy laws are being proposed, passed, or struck down on a monthly basis. Customer trust hinges on how organizations handle their data, as consumers are more than likely to cross the street to the competition if they’re not satisfied. In this session, Nader Henein, Research Vice President at Gartner, said that privacy cannot be a one-off project but rather an ongoing program that is just getting started.

Key Takeaways

  • Creating a strong privacy program means having an understanding of three things: 1) the current regulatory landscape, 2) the technology capabilities that support it and 3) the best practices that give control back to customers.

  • COVID-19 highlighted the maturity of the framework established by the General Data Protection Regulation (GDPR). This has made a noticeable difference to global privacy.

  • While it is important for organizations to start the privacy discovery process manually to get a feel for the complexity within their data, it becomes quickly evident that there is a need for automation to deliver scale.

  • One key success factor for a privacy program is the partnerships built with other organizational teams. Connect with your chief data officer (CDO) to understand what data is being used and how you can support them with privacy-preserving alternatives.

  • Privacy is deeply personal.

  • As you gain control over the data you process and turn it back over to consumers, compliance is no longer just a goal. It becomes part of the ethical fabric of your business.

  • The pressure to transform has increased during the pandemic and trust is central in doing so: Through 2023, organizations that can instill digital trust will be able to participate in 50% more ecosystems to expand revenue-generating opportunities.

It’s not too late to join the conference!

Trends in Midsize Enterprise Security

Presented by Patrick Long, Principal Analyst, Gartner

Midsize enterprises typically have smaller teams and  limited IT budgets, meaning that their  security leaders are faced with the tough challenge of making the most of the limited resources. Patrick Long, Principal Analyst at Gartner, discussed how security leaders should prioritize to stay current and proactive in protecting the organization and managing risk effectively.

Key Takeaways

  • Due to budget constraints, 57% midsize enterprises do not have a chief information security officer (CISO). These organizations usually have less than 30 members in their IT teams which means a reduced focus on security specialists.
  • Midsize enterprises face security risks from five major sources: 1) cyber criminals, 2) insiders, 3) hacktivists, 4) hackers and 5) nation/governance.

  • To overcome these risks, midsize security leaders need to invest in people, processes and technology.

  • In teams, where hiring a full-time CISO is not feasible, IT leaders can choose from alternatives such as virtual CISOs or outsourcing.

  • Midsize enterprises’ IT leaders need to assess the risk versus value while deploying game changing technologies such as big data security, artificial intelligence, cloud, etc.

Solving the Challenges of Modern Remote Access in a Post-COVID-19 World

Presented by Rob Smith, Sr. Director Analyst, Gartner

No one was ready for the onslaught of remote workers that COVID-19 brought on. Rob Smith, Sr. Director Analyst at Gartner, discussed how remote access VPN became one of the most important technologies overnight, and how organizations can implement the right remote access solution for their users and operations.

Key Takeaways

  • Remote access VPN is arguably the most important tech for security and infrastructure and operations today.

  • With the onset of COVID-19, workers now need a VPN to ‘get into the office’.

  • The first step in brainstorming the best VPN technology for your organization is to define your use case along four key variables: 1) user, 2) device, 3) data and 4) location.

  • There is no one right approach to remote access - you have to understand the strengths and limitations of each solution.

  • Don’t use always-on VPN unless you absolutely have to.

  • For the paranoid security people, virtual desktop infrastructure (VDI) solutions are best. It prevents enterprise data from making it to devices, however poor end-user bandwidth is a caution for workers in disparate locations.

  • Classify the data that is important to your organization rather than trying to protect it all, and then pick the appropriate controls based on that classification.

About Gartner

Gartner, Inc. (NYSE: IT) delivers actionable, objective insight to executives and their teams. Our expert guidance and tools enable faster, smarter decisions and stronger performance on an organization’s mission-critical priorities. To learn more, visit


It's not too late to join the conference

Latest Releases