Network World - Networking Nuggets and Security Snippets
In a recent ESG research survey (note: I am an employee of ESG), security professionals working at enterprise organizations (i.e. more than 1,000 employees) were asked the following question: How do you believe that your organization will change its security technology strategy decisions in any of the following ways over the next 24 months in order to improve its security management?In response:
44% said that they planned to “design and build a more integrated security architecture.” In other words, they want central configuration management, policy management, and reporting for different security technologies.
39% said that they planned to “include new data sources for security intelligence.” This means that they plan to collect more internal data from networks, applications, and security devices and also consume more external threat intelligence from existing security vendors or innovative newcomers like BitSight, Norse, and Vorstack.
These are worthwhile plans, but there is still a slight problem with the first initiative – building an integrated enterprise security architecture could take years as large organizations replace existing products as they are fully amortized and integrate them together through some common APIs and middleware. In the meantime, they will have to manage enterprise security through an army of point tools and manual processes.To read this article in full or to leave a comment, please click here