Security News > 2020 > September > Four ways CISOs can move enterprise security into the new normal
A roundtable discussion among Cisco chief information security officer advisers Wendy Nather, Richard Archdeacon, and J. Wolfgang Goerlich outlined how the enterprise cybersecurity world is changing, and what CISOs need to do to ensure the "New normal" is a secure one.
Archdeacon said that users have to be made the front line of security in this situation, which means implementing security systems that don't rely on enterprise security products connecting directly to remote user's PCs. Multifactor authentication, DNS security, VPNs, and other familiar security products that put the security onus on users will be necessary for now.
AI and ML-powered security tools have been viewed skeptically by some CISOs, and all three panelists seemed to agree that they're right to be wary of passing security off to what Nather said some CISOs consider "Just statistics and programming rules."
Nather advises CISOs planning to use AI and ML for security to treat it like any other form of automation.
Goerlich said the transition will be driven by two things: What users expect from consumer devices, and new security standards like FIDO that make passwordless security practical.
News URL
Related news
- CISOs don’t invest enough in code security (source)
- GitHub CISO on security strategy and collaborating with the open-source community (source)
- CISOs are juggling security, responsibility, and burnout (source)
- Zscaler CISO on balancing security and user convenience in hybrid work environments (source)
- How CISOs can balance security and business agility in the cloud (source)
- Trump’s DoD CISO pick previously faced security clearance suspension (source)