Delighted to participate in the panel discussion moderated by Dr. Huynh Nhat Nam on “Cybersecurity and Data Privacy”, as part of the Young Southeast Asian Leaders Initiative (Young Southeast Asian Leaders Initiative Academy at Fulbright University Vietnam) Academy Seminar on “Digital Transformation: Challenges and Opportunities” organised by Fulbright University Vietnam on 24 Sep 2021. Fellow panelists included Dr. Hingyan Lee, Philip Victor & Faisal Yahya. The audience comprised 35 rising young professionals in Southeast Asia and YSEALI faculty members with a very strong interest in digital transformation. We fielded questions covering a wide ranging topics including cybersecurity strategy, Zero Trust, critical infrastructure, IT/OT convergence & associated risks & emerging threats in post-pandemic.
——————————————————
Người-nông-dân lại rón-rén giao-lưu với 35 Fellows trẻ đến từ khắp các nước ASEAN trong phiên thảo-luận sáng nay được tổ chức bởi YSEALI Academy của Fulbright University Vietnam, hi hi :))))
HCMC University of Technology (HUTECH) Workshop by P.A Vietnam – Speaker: Cybersecurity Career Opportunities
Sharing session with students from HUTECH. Contribution to the University in the weekend as usual. Many thanks to PA Vietnam & VNNIC for having me with the session.
——————————————————
Sáng thứ 7 cuối tuần lại tiếp tục rón-rén giao lưu với các bạn SV của Trường ĐH Công nghệ TP.HCM (HUTECH). Rất vui lại được trở về HUTECH và hy vọng COVID sẽ sớm qua đi để người-nông-dân lại được gặp mặt trực tiếp các bạn SV và hát tặng các bạn 1 ca khúc Rock nhé hi hi :))))
The Forrester New Wave™: Zero Trust Network Access, Q3 2021
Summary
Security professionals can use this report to select the right partner for their Zero Trust network access.
ZTNA Evaluation Overview
- A proprietary Zero Trust network access product or service. We included vendors that demonstrate Zero Trust principles for on-premises application access by a remote workforce. We included vendors whose products and services actively replace VPN infrastructure.
- Annual ZTNA revenues of at least $5 million. We included vendors with at least $5 million annual ZTNA revenues in the 12 months ending on the cutoff date.
- At least 150 ZTNA customers and a global presence. We included vendors that have an install base of at least 150 active ZTNA customer organizations in production, with at least 10% of revenue outside the organization’s home region (NA, LATAM, APAC, or EMEA).
- At least 100 full-time employees. We included vendors with at least 100 full-time employees to better compare customer support, go-to-market, and ability to support strategic initiatives.
- An unaided mindshare within the industry. The vendors we evaluated are frequently mentioned in Forrester client inquiries, vendor selection RFPs, shortlists, consulting projects, and case studies. These vendors are also mentioned by other vendors during Forrester briefings as viable and formidable competitors.
Read the full report to find out how to evaluate ZTNA solutions to best suit your remote and hybrid workforce security needs. It covers:
-
- Forrester’s evaluation criteria for ZTNA vendors
- Strengths and factors to consider when mapping out your long-term workforce security needs
2021 State of Security Operations by Forrester
Executive Summary
To stop modern attacks, organizations need more integration, more visibility and more automation — analysts are struggling underwater trying to keep up with the immense volume of alerts that they receive every day. Today, analysts note that they struggle to triage and investigate threats quickly, with manual processes slowing down alert triage for a striking 74% of the survey participants. Because teams face a deluge of security alerts — 11,047 alerts a day on average — many teams ignore low-priority alerts, leaving over a quarter of alerts completely untouched.
Worse yet, almost two-thirds of security teams still rely on legacy endpoint security solutions, like antivirus tools and endpoint protection platforms, which limit their ability to gather rich endpoint data for detection, investigation, and response. Security operations decision-makers recognize that they must further embrace automation to relieve their analysts and allow for more strategic work to be focused on, rather than the day-to-day tactical management. Many organizations have begun to enlist automation to assist with pieces of the security workflow, and are working to increase their level of automation over the next two years.
Palo Alto Networks commissioned Forrester Consulting to explore today’s cybersecurity challenges and opportunities. Forrester conducted an online survey with 418 global security operations decision-makers who have responsibility over detection and response purchasing to understand the state of current security operations. We found that while few organizations have reached SOC maturity, 70% of respondents have begun their automation journey and 44% expect to use more automation in the next one to two years.
KEY FINDINGS
- › Security operations teams are still struggling to address the high volume of alerts. Less than half of decision-makers note that their organization is able to address most or all of the alerts they receive in a day. Teams struggle to quickly triage and investigate threats; and because they face a deluge of security alerts, many teams are forced to ignore low-priority alerts, leaving organizations vulnerable.
- › Almost half of all firms report struggling to hire and retain qualified staff. Because so much of threat detection, investigation, and response is still done manually, security operations teams are dealing with high rates of analyst burnout. Many teams are beginning to automate pieces of their workflows to alleviate this.
- › Nearlythree-quartersofdecision-makershavebeguntheirSOC automation journey. With full SOC automation being a long-term goal, 70% of surveyed organizations have begun their automation journey, and 44% expect to be using more automation in the next one to two years. Those who have adopted more automation report having a happier security operations team and a lower likelihood of technical challenges, such as poor visibility into security tools and a lack of tool integration.
[In Vietnamese]
2021 Gartner Market Guide for Cloud Workload Protection Platforms
Workload protection must span virtual machines, containers and serverless workloads in public and private clouds. Security and risk management leaders should use this Market Guide to understand the need for protection that spans development and runtime and includes cloud security posture management.
Key Findings
-
Most enterprises are purposefully using more than one public cloud infrastructure as a service (IaaS) platform, but still have on-premises workloads to protect.
-
With cloud-native applications, workload security must start proactively during development.
-
The cloud workload protection platform (CWPP) market is increasingly overlapping with the cloud security posture management (CSPM) market and “shifting left” into development to address the full life cycle of cloud-native application protection requirements.
-
Emerging approaches, such as the use of agentless CWPPs, appeal to buyers because of their ease of deployment.
-
Enterprises using endpoint protection platform (EPP) offerings designed to protect end-user devices for server workload protection are putting their data and applications at risk.
Recommendations
-
Implement a CWPP offering that protects workloads regardless of location, size, runtime duration or application architecture.
-
Secure workloads earlier by extending workload scanning and compliance efforts into development (DevSecOps), especially for container-based and serverless function platform as a service (PaaS)-based development and deployment.
-
Consolidate CWPP and CSPM strategies over the next 12 to 24 months to reduce costs and complexity and identify risks better.
-
Design for CWPP scenarios where runtime agents cannot be used or no longer make sense. Require CWPP and CSPM vendors to support agentless deployment options.
