As the Fourth Industrial Revolution opens up unprecedented business opportunities, it also increases the inevitability of a cyber-attack, and businesses need to be prepared. Not only do security measures need to be built into technology from the start, an awareness should be ingrained into company culture, while significant investment is also essential. Global spend on information security products and services will grow to a massive $93 billion in 2018, according to the latest forecast from Gartner.
With that in mind, these are some of the broad cyber-security trends that we’ll see moving into 2018:
Cyber-security skills continue to evolve
As technologies progress, the skills needed to deal with cyber-security needs are changing. The challenge is to train cyber-security professionals so that they can deal with threats as quickly as possible and also adapt their skills as needed. There will be some 3.5 million unfilled cyber-security roles by 2021, according to a Cyber-security Ventures report, so it’s up to governments, universities, schools and businesses to collaborate in order to bridge this substantial skills gap.
Shift from protection to prevention
In 2018, security breaches should be thought of as inevitable, rather than something that can be completely avoided. As a result, the focus is shifting from prevention to resilience. Businesses must talk openly about vulnerabilities, promoting awareness and accountability. Resources that are currently focused on prevention need to be redeployed towards the timely detection of and response to potential security hacks.
Digital ecosystems drive next-generation security
As smart technology and the Internet of Things (IoT) become more widespread, safeguarding customer data is even more important. As data breaches that reveal sensitive information can have a direct physical impact, organisations have become responsible for people’s safety. Accountability is a key challenge and technology companies must ensure that their devices, services and software ensure a certain level of security for their users. As cyber-security needs and regulations evolve, businesses will need to strategically develop next-generation frameworks to minimise risk. Not only will these need to support today’s requirements, they must also be designed to cope with disruptions caused by emerging technologies.
Bigger, more sophisticated threats
Up to 70% of emails today are spam, and the vast majority of these still involve phishing scams. Other common hacking threats include ransomware, malware and Distributed denial-of-service (DDoS) attacks, all of which have been responsible for major data breaches in recent months and which can leave both company and customer data vulnerable to cyber-criminals. A massive 93% of data breaches are motivated by financial gain, according to a recent Verizon report. Hackers aim for the highest return for the least amount of effort, which is why smaller businesses with lax security are often successfully targeted.
Emerging technologies are a double-edged sword
Emerging technologies have enabled cyber-criminals to use increasingly sophisticated methods but ironically, these innovations could also help to boost defence against hackers. For example, there is an increasing threat of artificial intelligence-enabled attacks, but AI could also help to speed up the process of identifying potential risks. AI is set to be so integral to cyber-security in future that it is estimated that the global AI security market will reach $18.2 billion by 2023, according to a recent report. Similarly, the expanding network of connected IoT devices opens up more potential security threats with some 22.5 billion IoT devices predicted to be connected to the internet by 2021, according to a report from Business Insider. While security will be a challenge, the vast amount of data generated by IoT technology could actually help researchers to spot security flaws.
Threat landscape continues to evolve to target vertical industries
While cyber-threats are a key concern for businesses across all industries, here’s what the security landscape looks like for a number of key sectors:
- Banking, Financial Services and Insurance (BFSI): The BFSI sector is under growing pressure to update its legacy systems to compete with new digital-savvy competitors. The value of the customer data they hold has grown as consumers demand a more convenient and personalised service, but trust is essential. Some 50% of customers would consider switching banks if theirs suffered a cyber-attack, while 47% would “lose complete trust” in them, according to a recent study. A number of major banks around the world have already been subject to high-profile cyber-attacks suggesting that the sector needs to improve its approach to risk. Financial firms should invest in security applications that are able to adapt to the future of banking to ensure comprehensive, around-the-clock security. Shared Ledgers will feature prominently in the future of the BFSI sector, the best-known example of which is Blockchain, which forms the backbone of cryptocurrency Bitcoin. Blockchain is a database that provides a permanent record of transactions. It leaves an undisputed audit trail that can’t be tampered with, meaning it could completely transform security in the BFSI sector.
- Healthcare: The digitisation of patient records completely revolutionised the world of healthcare, with health-monitoring wearables and apps bringing further improvements. What’s more, emerging technologies including AI and IoT are now being used to speed up diagnoses and improve patient care. However, the sensitivity of the data involved and greater connectivity increases the risk. Earlier this year, Experian predicted that the healthcare sector would be the most heavily targeted by cyber-attacks and the WannaCry ransomware, which temporarily crippled healthcare institutions around the world, showed just how vulnerable it can be. In this sense, the healthcare sector needs to adopt a similar approach to risk analysis as the banking sector, while a set of industry-wide standards for healthcare data systems may also be required.
- Retail: The emergence of online shopping and data analytics has helped retailers to craft a more convenient and personalised experience for customers. However, with that comes a huge responsibility to safeguard their data, which could include not only their shopping preferences and login credentials, but their banking details and home address. The shopping experience is becoming increasingly connected thanks to IoT technology, augmented reality and even facial recognition — and once again, more connectivity ups the risk of a data breach. That’s why the retail sector requires a similarly robust approach to the risk of cyber-attack as banking and healthcare.
- Telecom: There is a significant cybersecurity risk for telecom firms as carriers of internet data, and therefore a huge responsibility. Providers need to integrate cybersecurity measures into network hardware, software, applications and end-user devices in order to minimise the risk of a serious data breach, which could leave customer credentials and communications vulnerable. Consumers are increasingly careful about who they entrust their personal data to, providing a strong opportunity for networks that offer additional security services. In addition, collaboration between rival operators could lead to greater resilience against cyber attackers.
- Manufacturing: The manufacturing sector is the third most targeted industry by hackers, according to IBM research. Being financially motivated, hackers in this area tend to concentrate on industrial espionage, aiming for the increasingly connected production line that features robotics and 3D printing. A security breach enables hackers to access product blueprints and potentially even alter machinery to sabotage production. Not only could this kind of breach have significant financial cost, it could also endanger the lives of factory workers. Manufacturing firms should be continuously scanning the production line for vulnerabilities and implementing control measures that limit access to other areas of the system if one component of the manufacturing line is breached.
- Government: No organisation is immune to data breaches, not even government agencies. The data held by governmental departments, from voter details to military defence plans is incredibly sensitive and therefore a major target. While governments around the world are gradually increasing their spend on cyber-security measures and implementing response plans to deal with any security breaches as quickly as possible, there is still some way to go. Some government agencies have already started to make use of bug bounty programmes where ‘white hat’ hackers are encouraged to seek out and report potential security flaws in return for financial reward. As the number of hacks continues to grow every year, digital security is now a critical investment for all governments around the world.
In summary, while it’s important for individuals to be more mindful of cyber-security, the same awareness must also be present at an organisational level. Businesses that invest in security measures to reduce the risks of a data breach will have a competitive advantage. What’s more, the issue needs to be tackled at a country level with governments and international bodies adopting a more prescriptive approach. Laws and regulations must be updated accordingly, while governments must also encourage education and enable international threat intelligence sharing. Regulation is essential so that providers can build the necessary defences.
Read one of my previous blogs on consumer security in 2018.
Transformational Hybrid SolutionsOur cloud-enablement services offer the best performance on your traffic-heavy websites or mission-critical applications.
Core NetworksTata Communications™ global IT infrastructure and fibre network delivers the resources you need, when and where you need them.
Network Resources 
Unified Communications As A ServiceBreak the barriers of borders efficiently and increase productivity with Tata Communications’ UC&C solutions.
Global SIP ConnectEmpower your business with our SIP network and witness it grow exponentially.
InstaCC™ - Contact Centre As A ServiceCloud contact centre solutions for digital customers experience and agent productivity.
DIGO – Communications Platform as a ServiceDIGO is an in-network cloud communications platform, enabling you to power up converged contextual human-to-everything conversations globally.
Unified Communication Resources Case studies, industry papers and other interesting content to help you explore our unified communications solution better.
IoT SolutionsThe Internet of Things is transforming the way we experience the world around us for good. Find out more about our Internet Of Things related solutions here.
Mobility SolutionsTata Communications’ mobility services enable your enterprise to maintain seamless communication across borders, with complete visibility of cost and usage.
Multi-Cloud SolutionsWith enterprises transitioning to a hybrid multi-cloud infrastructure, getting the right deployment model that yields ROI can be a daunting task.
Cloud ComplianceCompliant with data privacy standards across different countries and is also designed to protect customers’ privacy at all levels.
IZO™ Cloud Platform & ServicesIZO™ is a flexible, one-stop cloud enablement platform designed to help you navigate complexity for more agile business performance.
Managed Infrastructure ServicesIntegrated with our integrated Tier-1 network to help your business grow efficiently across borders.
Cloud PartnersWe support a global ecosystem for seamless, secure connectivity to multiple solutions through a single provider.
Governance, Risk, and ComplianceRisk and Threat management services to reduce security thefts across your business and improve overall efficiencies and costs.
Cloud SecurityBest-in-class security by our global secure web gateway helps provide visibility and control of users inside and outside the office.
Threat Management - SOCIndustry-leading threat-management service to minimise risk, with an efficient global solution against emerging security breaches and attacks.
Advanced Network SecurityManaged security services for a predictive and proactive range of solutions, driving visibility and context to prevent attacks.
Cyber Security ResourcesCase studies, industry papers and other interesting content to help you explore our securtiy solution better.
Hosted & Managed ServicesTata Communications provide new models for efficient wholesale carrier voice service management. With our managed hosting services make your voice business more efficient and better protected
Wholesale Voice Transport & Termination ServicesYour long-distance international voice traffic is in good hands. End-to-end, voice access & carrier services which includes voice transport and termination with a trusted, global partner.
Voice Access ServicesTata Communication’s provide solutions which take care of your carrier & voice services, from conferencing to call centre or business support applications.
CDN Acceleration ServicesOur CDN Web Site Acceleration (WSA) solution helps deliver static and dynamic content, guaranteeing higher performance for your website.
CDN SecuritySafeguard your website data and customers’ information by securing your website from hacks and other mala fide cyber activities.
Video CDNDeliver high-quality video content to your customers across platforms – website, app and OTT delivery.
Elevate CXIncrease customer satisfaction while empowering your service team to deliver world-class customer experience and engagement.
Live Event ServicesTata Communications’ live event services help battle the share if eyeballs as on-demand video drives an explosion of diverse content available on tap for a global audience.
Media Cloud Infrastructure ServicesTata Communications’ media cloud infrastructure offers flexible storage & compute services to build custom media applications.
Global Media NetworkTata Communications’ global media network combines our expertise as a global tier-1 connectivity provider with our end-to-end media ecosystem.
Use CasesUse cases of Tata Communications’ Media Entertainment Services
Remote Production SolutionsMedia contribution, preparation and distribution are highly capital-intensive for producers of live TV and video content, and their workflows are complex.
Media Cloud Ecosystem SolutionsThe Tata Communications media cloud infrastructure services offer the basic building blocks for a cloud infrastructure-as-a-service.
Global Contribution & Distribution SolutionsTata Communications’ global contribution and distribution solution is built to reduce capital outlay and grow global footprint.
Satellite Alternative SolutionsAs more and more consumers choose to cut the cord & switch to internet-based entertainment options, broadcasters are faced with capital allocation decisions.
LeadershipA look into the pillars of Tata communications who carry the torch and are living embodiment of Tata’s values and ethos.
Culture & DiversityHere at Tata Communications we are committed to creating a culture of openness, curiosity and learning. We also believe in driving an extra mile to recognize new talent and cultivate skills.
OfficesA list of Tata Communications office locations worldwide.
SustainabilityTata Communications adopts a holistic approach and harnesses the power of new-age technologies like 5G, IoT and AI to build a sustainable digital world.
FAQCheck out our FAQs section for more information.
BoardHave a look at our board of members.
ResultsFind out more about our quarterly results.
Investor PresentationsFollow our repository of investor presentations.
FilingsGet all information regarding filings of Tata communications in one place.
Investor EventsAll investor related event schedule and information at one place.
GovernanceAt Tata, we believe in following our corporate social responsibility which is why we have set up a team for corporate governance.
SharesGet a better understanding of our shares, dividends etc.
SupportGet all investor related contact information here.
Oracle
Amazon Web Services
Microsoft
Google Cloud
IBM Cloud
Salesforce
Alibaba Cloud
Digital Futures
Smart Cities
Corporate Venturing and Innovation