Security is no longer restricted within the boundaries of an organization. Technologies like the cloud, BYOD, and big data have extended the security policies beyond network security as companies are actively investing in end point security solutions.
The State of the CIO Mid-year Review 2014, conducted by CIO Magazine (sister publication of ChannelWorld), states that more than 78 percent of CIOs would spend more on security management and planning in 2014.
A report by Gartner also points out the increase in uptake of security solutions by India Inc. in 2014. ChannelWorld spoke to vendor companies about the key shifts they think are happening in the security world currently.
Anil Bhasin, Managing Director, India and SAARC, Palo Alto Networks
To protect sensitive business data, enterprises need to actively engage C-level leaders. This ensures strong understanding of IT-related security risks and their business implications. Employees should also be educated on how to protect their smart devices from cyber-attacks, especially with the rise of BYOD.
Tarun Kaura, Director–Technology Sales, India, Symantec
Over 69 percent of targeted attacks last year were focused on large enterprises, indicating that protection must focus on information, and not on the device. Enterprises need to adopt a suitable security framework that expands the focus from only prevention to prevention, detection, and response by implementing highly integrated solutions like ATP.
Ambarish Despande, Managing Director, India, Blue Coat
Actionable intelligence is the most critical information that organizations need to protect. This requires a different approach; adding more and more security products is not going to help in long run. We are definitely seeing a generation shift, but maturity levels remain low. Companies need to focus more on an architectural approach than the product.
Rajesh Maurya, Country Manager, India & SAARC, Fortinet
Security teams want integrated controls that can scale and change as threats constantly mutate. Today, customers want NGFWs that do more than firewalling and IPS/app control; they want gateways that fight advanced threats like zero-day malware. Therefore, enterprises are demanding advanced threat prevention, sandboxing, and SSL decryption, and inspection.
Kevin Mandia, Chief Operating Officer and SVP, Fire Eye
Weak security has direct impact on business operations. This impact can be as major as losing proprietary intellectual property or worse, customer trust. We've never seen such disconnect between the offense and the defense. Because a cyber-attack can set a company years behind in product development, revenue, and reputation, security is now a board-level conversation.
Jagdish Mahapatra, Managing Director, India and SAARC, McAfee
McAfee has always thought of security as a business problem. Often, organizations that have been affected by a security breach look at data loss as something that they need backups for. Sure, backups help, but protecting that data from never being stolen again is as important. So while our technology has kept pace, customer education is still an on-going process.
Surendra Singh, Regional Director, India & SAARC, Websense
Sophisticated cyber-attacks, breaches, and disclosures are becoming the new normal. Security is no more a subject restricted to IT teams, and senior management is equally taking note of the business implications that cybercrimes can have on their organization’s brand, revenues, and customers. Given the rapid change in the threat landscape, we must transform the way enterprises think and behave.