Thoughts on cybersecurity mesh architecture (CSMA)? Is it just a new buzzword or a genuine step up from Zero Trust and SASE?

Zero TrustSecuritySecurity Strategy & Roadmap+1 more
3.1k views1 Upvote3 Comments
Sr. Director of Enterprise Security in Software, 5,001 - 10,000 employees
The idea has a lot of merit. If you can consider your security strategy to be  puzzle pieces fitting together, rather than overlapping silos, there is much to be gained. Between better analytics, using "best in class" products specifically for their niche, and having the freedom to plug in solutions from various vendors, the idea seems really appealing on paper. I think it remains to be seen how the implementation will work, but much as we pushed for open APIs from vendors, having the ability to integrate your tools together to leverage them in a way that suits your use case the best, will be a market differentiator for a lot of products. 
2
CTO in Software, 201 - 500 employees
It all has its place. I am for knowing your assets, understanding your risks, then using defense in depth strategies to apply protections based on asset's value.
Director of Enablement, 501 - 1,000 employees
Hot take: CSMA is SASE without a clear strategy.

SASE should focus on a convergence of technologies and vendor collapse to ensure consistent data context, while simplifying a typical chaos architecture.

CSMA typically takes point products and mashes them together with an overlay to help orchestrate each tier. What you end up with is generally a fragmented approach with a ton of kit you need to keep updated and patched.

CSMA is like a boat held together with duct tape. Sure it works, but you’re going to have to keep quite a few spare rolls on board if you want to sail

Content you might like

What do you think of Cisco acquiring Splunk? Do you anticipate the acquisition will ultimately impact your use of Splunk?

Security Strategy & Roadmap

Significantly increase usage7%

Somewhat increase usage47%

No change in usage47%

Somewhat decrease usage0%

Significantly decrease usage0%

Don't know yet - too soon to say0%


60 PARTICIPANTS
304 views1 Upvote

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
142 19 Replies
Read More Comments
43.5k views132 Upvotes319 Comments

What's your initial reaction to Cisco acquiring Splunk?

Applications & PlatformsSecurity Strategy & RoadmapIT Strategy & Roadmap
1.3k views1 Upvote1 Comment

Where do HR and other non-security/IT departments fit into your insider risk management strategy/program? What role do they currently play?

Security & GRCRisk ManagementThreat & Vulnerability Management+1 more
Read More Comments
4.5k views1 Upvote7 Comments

Do you feel like security’s current role in your org’s generative AI initiatives is adequate? Or do you think the security team(s) should be more/less involved?

Artificial Intelligence & Machine Learning (AI/ML)Governance, Risk & ComplianceSecurity Strategy & Roadmap

Way more involved6%

Somewhat more involved47%

A bit more involved30%

Security’s current role is adequate10%

A bit less involved4%

Somewhat less involved1%

Way less involved1%


203 PARTICIPANTS
1.4k views