With rising regulations and cyber threats, how are you adapting your data security posture in 2025?

Security Strategy & Roadmap Peer Insights

1.2k views3 Comments

Sort by:

Data and Analytics Manager11 hours ago

I think if you're moving your posture in response to this then you've been stuck in an old paradigm for security for some time. Ever since the data escaped the easily defined corporate boundaries with data roaming on a variety of devices and cloud usage your focus should have been on securing the data wherever. An example might be moving certain data to sovereignty alignment. You should already have some loose roadmap for that if you have data scattered that may have to be considered in terms of that. End point protection is old hat and while you might want to do some reassessment that shouldn't be a radical change. Zero trust is another one. While you may not be 100% zero trust, I would expect today you would have many of the puzzle pieces in place as they are seen to be great ideas for security, even if you're not full out net zero.

Principal Investigator7 days ago

Learning cybersecurity fundamentals is a great countermeasure to data security posture in 2025.

IT Analyst14 days ago

Implementing various layers of security—external perimeter, internal user, network, and device levels—with several different tools and end-user awareness campaigns, including talks, videos, courses, and email phishing drills, indicating the error and letting the end user know what to do.

Content you might like

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP.

We would like to know what is the best advanced threat detection / prevention security control that provides the most bang for buck for a large organisation that wants to enhance its security posture to better detect and mitigate advanced threat actors.

Main goals are to reduce dwell time, enrich alerts, reduce SOC engineer incident response time, illicit targeted threat intelligence to compliment 3rd party Threat Intelligence providers

Network Detection and Response (NDR)31%

Endpoint Detection and Response (EDR)49%

Extended Detection and Response (xDR = NDR / EDR / CDR)62%

Intrusion Detection & Prevention Systems (TLS Decrypting) IDPS23%

Deception Technology (External Only)11%

Deception Technology (Internal Only)7%

Deception Technology (External & Internal)9%

View Results

How do you think AI will disrupt business across industries? Add to my list: 1. Content creation 2. Photos and video production 3. Basic coding and debugging 4. Strategic analysis to be highly complimented

How is your organization managing the impact of data localization laws?

Shifting to local cloud regions100%

Partnering with sovereign cloud providers

Investing in hybrid/multi-cloud governance

Still evaluating the regulatory landscape

View Results

With rising regulations and cyber threats, how are you adapting your data security posture in 2025?

Sort by:

Content you might like

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP.

How do you think AI will disrupt business across industries? Add to my list: 1. Content creation 2. Photos and video production 3. Basic coding and debugging 4. Strategic analysis to be highly complimented

How is your organization managing the impact of data localization laws?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

How to develop top customer journeys using VoC data

Preparing For Shifting Data Privacy Laws: Data Leader Perspective

Hyperautomation: Are You Automating Your Business?

The CIO and CEO Relationship: CIO Perspective

Take Your Insights On-the-Go