Major Shifts in Store for Cybersecurity Landscape by 2028
Gartner Inc. unveiled its top cybersecurity predictions for 2024 and beyond, forecasting significant changes in the cybersecurity landscape, including the adoption of generative AI (GenAI) and the rising cost of battling misinformation.
The predictions, announced at the Gartner Security & Risk Management Summit in Sydney, indicate that by 2028, GenAI adoption will collapse the cybersecurity skills gap, eliminating the need for specialized education in 50% of entry-level cybersecurity positions. This shift will transform how organizations hire and train cybersecurity workers, focusing more on aptitude than formal education.
Garter also predicted that 75% of organizations will begin removing what it refers to as “unmanaged, legacy, and cyber-physical systems” from their zero trust strategies by 2026. Zero trust is a security paradigm that explicitly identifies users and devices and grants them just the right amount of access.
By 2026, enterprises integrating GenAI with security behavior and culture programs (SBCP) will experience 40% fewer employee-driven cybersecurity incidents, Gartner predicted. The use of GenAI to generate hyper-personalized content and training materials will increase the likelihood of employees adopting more secure behaviors, resulting in fewer cybersecurity incidents, the company said.
The predictions also highlight the increasing personal legal exposure of cybersecurity leaders. By 2027, two-thirds of global 100 organizations are expected to extend directors and officers (D&O) insurance to cybersecurity leaders. This move is in response to new laws and regulations, such as the U.S. Securities and Exchange Commission’s cybersecurity disclosure and reporting rules, which expose cybersecurity leaders to personal liability.
The battle against misinformation is set to become a significant financial burden for enterprises. By 2028, enterprise spend on combating misinformation is expected to surpass $500 billion, consuming 50% of marketing and cybersecurity budgets. Gartner recommends that CISOs define the responsibilities for governing, devising, and executing enterprise-wide anti-misinformation programs, and invest in tools and techniques to combat the issue.
Identity and access management (IAM) leaders will also bear more of the responsibility when it comes to mitigating IAM-related breaches, with 40% expected to do so through 2026. Additionally, IAM capabilities will also expand within organizations by 70% by 2027, combining “data loss prevention and insider risk management disciplines with IAM content,” Gartner predicts.
Deepti Gopal, Director Analyst at Gartner and conference speaker said, “As we start moving beyond what’s possible with GenAI, solid opportunities are emerging to help solve a number of perennial issues plaguing cybersecurity, particularly the skills shortage and unsecure human behavior. The scope of the top predictions this year is clearly not on technology, as the human element continues to gain far more attention.”
The predictions underscore the evolving nature of cybersecurity, with a shift towards GenAI and an increased focus on the human element. The rising cost of battling malinformation and the increasing personal legal exposure of cybersecurity leaders are also key trends to watch. These predictions provide valuable insights for organizations looking to future-proof their cybersecurity strategies.
For more information, visit the Gartner website. &