Protiviti Experts Share Their Predictions
Recently, Tech Insights interviewed a number of Protiviti’s Technology Consulting leaders to get their thoughts on the “hot topics” on which CIOs and CISOs should focus in the year ahead. These insights are based on the conversations our experts have had with tech leaders throughout 2020. Our 2021 Tech Priorities series continues through January. Today, we look at what tech leaders must consider when managing security and privacy tools in 2021.
In December 2020, news broke about a massive cyberattack on the U.S. government, which – given the nature of the threat and its potential impact on many industries outside of federal agencies and the public sector – is likely to have a sweeping impact around the world for much of 2021. This compromise vividly illustrates the need for organisations to be hyper-vigilant going forward, protecting both systems and the valuable data housed within those platforms. While data security and privacy had been garnering more attention in 2020, thanks in great part to the COVID-19 pandemic, 2021 will be a key year for tech leaders to emphasise the criticality of protecting their organisation’s “crown jewels.”
Between the push for digital transformation and the increased focus on regulatory concerns, companies adopting new operating models and technologies have introduced security and privacy risks into their ecosystems. While the incredible amounts of data organisations store and govern are a tremendous source of business information, rising regulatory activity activity has also become a significant factor in effective data management. Add to this the growing risk of cyberattacks and consumer demands for privacy protection and the need for vigilance rises to the top of everyone’s “must do” list. So, which areas should be considered first?
Too Many Tools
Use Cases and Zero Trust
Reviewing use cases is the most effective way to determine how to get the right tools and processes in place, said Manisha Agarwal-Shah, who leads Protiviti’s privacy practice.
Ferretti agreed: “Due to the increase of untrusted media and devices used to access and treat company data, we will see a growing adoption of zero-trust architecture approaches binding many security measures to users and data and accepting that infrastructure and devices might be unsecure, like the ones that are used for remote working, which is so popular today. Data classification and protection and strong authentication technology will be much more pervasive. To improve incident detection and response capabilities, security and monitoring technologies will see wider adoption, especially those with integrated advanced features such as intelligent correlation and ATP.”
Automation to Increase Sustainable Productivity
Ferretti believes the “cloudification” of data subject rights and increasing awareness of those rights are requiring more resources for companies to deal with customers and other stakeholders for privacy matters. “In 2021, the automation of such processes will be a key element to keep these processes sustainable,” he said. “In addition, all the measures the regulators are asking companies to implement to control data transfers will require the implementation of further encryption and masking technologies to prevent and control data accesses.”
“We predict more companies will begin leveraging hyper–automation or moving automation from tasks to full scale processes,” said Jost. “The adoption of robotics technologies steps up to a new plateau this year; we predict the breadth of automation to reach higher in the enterprise and enable automation of business ecosystems.”
Companies “want to free up their resources to focus on running the business, not on backend compliance measures,” said Shah. “To operationalise compliance efforts without technology is very cumbersome,” she added. “We do see organisations pivoting to more of a managed service model. We recently worked with a client that just asked us to run backend processing for privacy requirements (PIAs, inventories, responding to DSARs) in 49-plus countries.”
Our 2021 Tech Priorities series continues through January. To date, we’ve taken a 30,000 foot view of what’s ahead in 2021 and reviewed the best tech investments for the coming year. Next, we will explore why introducing or expanding cloud will be critical for all organisations in 2021, followed by a tech leader’s view of the customer experience. To learn more about Protiviti’s Technology Consulting capabilities, contact us.