The Gartner Group presented a range of predictions at its Security & Risk Management Summit in mid-March.
The analyst firm recommended that cybersecurity leaders take these assumptions into consideration as they build security strategies for the next two years and beyond.
Eight assumptions were presented:
- Half of entry-level cybersecurity positions will no longer need specialized education by 2028, as organizations use generative AI-based solutions to hire and train these job candidates
- Generative AI has the potential to generate hyper-personalized content and training materials, which in turn could reduce employee-driven cybersecurity incidents by 40%
- 75% of organizations will exclude unmanaged, legacy and cyber-physical systems from their zero-trust strategies through 2026
- Two thirds of global 100 organizations are expected to offer Directors-and-Officers insurance, as emerging regulations expose cybersecurity leaders to personal liability
- By 2028, expenditures by enterprises to battle “malinformation” will exceed half a trillion dollars, stealing from marketing and cybersecurity budgets; creating a need to invest in tools and techiques to manage against it.
- Identity and Access Management (IAM) leaders will assume greater responsibility for detecting and responding to access breaches, influencing broader security initiatives
- 70% of organizations will combine data loss prevention and insider risk management with IAM to identify suspicious behavior, by 2027,
- By 2027, a third of cybersecurity functions will design app security for consumption directly by non-cyber experts, and owned by app owners, to help compensate for demand that app security teams can’t handle.
Further reading
Gartner unveils top eight cybersecurity predictions for 2024. Press release. March 18, 2024. Gartner Security & Risk Management Summit, Sydney. Gartner Group.
Gartner reveals top eight cybersecurity predictions for years ahead. Article. March 19, 2024. Techmonitor. New Stateman Media Group (UK)
Why it matters
“As we start moving beyond what’s possible with GenAI, solid opportunities are emerging to help solve a number of perennial issues plaguing cybersecurity, particularly the skills shortage and unsecure human behavior,” said Deepi Gopal, Director Analyst for Gartner.
“The scope of the top predictions this year is clearly not on technology, as the human element continues to gain far more attention. Any CISO looking to build an effective and sustainable cybersecurity program must make this a priority,” she said.