2021 was a year of significant challenges for companies in Latin America regarding the issue of cybersecurity. This is due to the increase in cyberattacks derived from the accelerated implementation of teleworking, where companies were forced to digitize critical processes.
Thus, most companies found that they were not prepared to face the large number of threats today.
According to a survey carried out by ESET, 77% of workers use their personal equipment and 57% were not provided with the necessary security tools to carry out their work from home.
Therefore, companies must be prepared and aware of the challenges they face regarding cyber security.
In this context, Lumu Technologies shared some predictions in cybersecurity for 2022, where 9 directors of technological security from different organizations in Latin America participated.
Hybrid work: the great challenge
Hybrid work will continue to be one of the main challenges many organizations will have on the path to the new normal.
The leaders of many organizations admit that they are still not clear about the scope and impact of the hybrid model, and therefore do not establish security strategies that can effectively counteract the impact caused by the significant expansion of the attack that occurs thanks to this working model.
Thus, the migration to the cloud and the adoption of various types of software and infrastructure to carry out the hybrid work, provides cybercriminals with greater opportunities to attack misconfigured accounts and systems.
On the other hand, users who work remotely do not only work from home, they also resort to public places and connect to insecure networks, exposing the security of the data on their computers.
“The digital transformation led us to implement different levels of outsourcing within organizations to understand a new collaborative work structure. Today the use spread with the allies. An important challenge for organizations next year will be to extend cybersecurity risk control to all employees »
Carolina Olarte, CISO of Lulo Bank for Colombia
Companies will break with SIEM
Currently the SIEM (Security Information and Event Management System) are responsible for providing companies with a fast and accurate response to detect and respond to any threat to their computer systems.
This system has been part of the cybersecurity of companies for more than two decades, but with the arrival of new technologies and SOC (Security Operations Center) teams, its existence is probably beginning to be questioned.
A cybersecurity war of talents looms
Faced with a world so complex and full of digital attacks, companies will compete to find the best cybersecurity specialist. Standards will be raised and budgets in that area will be reduced further.
«We CISOs have the challenge of promoting the need for training and awareness in all the people who have access to the organization. It is useless to increase protection tools, if later the person shares their username and password. Here security schemes are broken »
Armando Castillo, Corporate Manager of Information Security and Cybersecurity of Grupo Pichincha
Cyber insurance will become inevitable
Although some governments are forcing organizations to purchase cyber insurance, insurance companies will be more selective about the terms of coverage.
Companies will have to demonstrate a strong cybersecurity practice; otherwise, they will have to pay higher coverage rates or not have the expected coverage.
Small and Large Scale Ransonware Campaign Attacks
By 2022, traditional data hijacking methods are expected to target smaller but larger-scale targets. Increased availability of initial access, malware, and ransomware chains will bring new players into the criminal underworld of cyberattack.
Do you want to be up to date in the world of technology? Subscribe to our YouTube channel and do not miss the best in gaming, gadgets and geek culture. Follow us on social media