Key Takeaways

• “Cybersecurity leaders and teams will need to evolve faster than ever before.”
• “To become a sustainable leader with sustainable teams, you will need to surround yourself with the people who complement (your) weaknesses.”
• “Far too often a failure to communicate leads to significant system disruption and, in some cases, catastrophic career disruption for the CISO.” 
• “A strategy of bringing business into cybersecurity decisions produces better resilience, and more willing collaboration between business users and the office of the CISO.”
• “The realization that successful attacks are inevitable helps business leaders understand that improvement is not just about technical security, but the business itself has to be part of the security strategy.”    
• Gartner predicts that by 2035, 90% of detection and 60% of response to cyberattacks will be handled by AI. “The volume and speed of attacks will grow by multiple orders of magnitude. AIs will classify those attacks and only raise an alert when a predefined threshold is reached, allowing the cybersecurity team to focus on the attacks that matter.”
• “We have to shift to a predictive model, not simply as a matter of best practice but as a matter of career resilience and preserving our mental and physical wellbeing.”

Learn more from the Gartner Opening Keynote in the associated Gartner press release.

Key Takeaways

• “Many organizations started leveraging traditional security products in the cloud in the early cloud adoption phase. This approach can work in the short term, but as application and DevOps teams adopt cloud-native services, traditional security products are not able to address these use cases.”
• “Cloud-native security needs to address runtime protection, cloud configuration, artifact scanning and DevSecOps enablement.”
• “Born in the cloud enterprises and their security investments can be a guide to the future state of security.”
• “Align security with the underlying architecture and business criticality. One size does not fit all.”
• “Cloud security capabilities are likely newer and more versatile, so apply these to your on-premises systems where suitable.”
• “Looking ahead on the horizon of cloud security, new technologies and trends that may emerge include cloud providers becoming security providers, security or policy as code, data and cloud sovereignty, confidential computing and more.”

Key Takeaways

• “In a 2021 survey, Gartner found that AI teams are more concerned about AI risk overall compared to CISOs. It's not every day that someone is more concerned about information risk than the security team.”
  
• “Another Gartner survey found that compromises against enterprise AI are common, with 41% of organizations reporting that they’ve experienced an AI privacy breach or security incident.”
  
• “The AI attack surface is comprised of attacks that use AI, such as deepfakes, and attacks against AI, such as social engineering using AI-generated voice.”
  
• “The top reasons why AI teams do not follow security guidelines are that it is too resource-intensive or that it takes too long to implement. It's clear that security teams must make guidance less burdensome for developers and data scientists.”
  
• “Two-thirds of organizations are using a task force to manage AI privacy, security and risk, and those organizations are seeing better AI project results.”
  
• “Organizations that spend time and resources now on supporting AI trust, transparency, and security will see improved AI outcomes in terms of adoption, achieved business goals and both internal and external user acceptance.”