Cybersecurity Trends for 2022: 4 Issues IT and Security Pros Should Know
While the cybersecurity landscape is bound to undergo multiple changes throughout 2022, much of what will happen over the next 12 months will be based on a series of decisions and security incidents that occurred in 2021.
In May, as part of a response to the 2020 disclosure that nation-state actors had targeted SolarWinds and customers of the company’s Orion network monitoring platform, President Joe Biden signed a sweeping presidential executive order related to cybersecurity. This order will fundamentally alter how the federal government approaches security, as well as how departments evaluate and purchase software and other technologies from third-party suppliers.
Besides SolarWinds, a series of high-profile ransomware attacks has spurred Congress to consider several bills that seek to strengthen the rules of how and when organizations should report these attacks. At the same time, lawmakers have pushed to implement greater privacy protections for citizens’ data at both the state and federal level.
During all this, the stubborn COVID-19 pandemic has remained, with variants (first Delta and now Omicron) continuing to cause concern among employers—and guaranteeing that remote and hybrid work is likely to remain a fixture well into 2022. This also means the security and IT challenges of the last 24 months will continue into the new year.
“Then 2021—and reality—set in: the Delta variant spread, lockdowns reappeared, and employees flirted with heading back to the office … only to join remote meetings from home just like before,” according to a recent Forrester analysis that looked at how cybersecurity issues are developing for the new year. “Relationships, collaboration, and trust will dominate 2022, and gaps in those areas will have outsized impacts on firms’ relationships with their colleagues, partners, and suppliers.”
With this evolving security landscape, the next 12 months are expected to bring additional changes for organizations’ cybersecurity practices, especially as better technologies and more modern practices become standard. Here are four trends that IT and security pros should watch as 2022 comes into focus.
Zero Trust Comes of Age
Several security analysts believe that 2022 is the year when more organizations will apply the principles of zero trust to their security plans as a way to reinforce principles of least privilege and defense-in-depth. This, in turn, can limit the number of breaches and reduce lateral movement by attackers if they do manage to bypass initial security tools.
The Biden executive order is also pushing federal agencies to adopt zero trust architecture as well to counter ransomware and attacks by nation-state groups looking to conduct espionage or steal data.