使用结果驱动指标来调解GenAI风险

Gartner Research Security Technologyand Infrastructure forTechnical ProfessionalsPrimer for 2024 Richard Bartley31 January 2024 Security Technology and Infrastructure forTechnical Professionals Primer for 2024 Published 31 January 2024 - ID G00802723 - 11 min read By Analyst(s): Richard Bartley Initiatives:Security Technology and Infrastructure for Technical Professionals The Gartner for technical professionals security technology andinfrastructure initiative will guide security and risk managementtechnical professionals as they implement practices and solutionsto protect their organizations’ critical assets in 2024 and beyond. Scope This initiative describes the processes and technologies required to protect organizations’modern digital infrastructure against cyberattack. Topics in this initiative include: Application Security:Apply effective strategies and technology for securingapplications and application infrastructure within DevSecOps practices, softwaresupply chains, cloud-native applications and microservices architectures.■ Cloud and Infrastructure Security:Protect infrastructure, infrastructure as a service(IaaS), platform as a service (PaaS) and software as a service (SaaS) with cloud-native security features, along with third-party security solutions.■ Data Security:Build data-centric security strategies and select technologies that helpidentify, classify and protect data in order to mitigate the risk of loss, theft,corruption and manipulation.■ Endpoint Security:Secure mobile and traditional endpoint devices from basic andadvanced attacks.■ Network Security:Approach network security in a hybrid cloud/on-premisesenvironment using concepts such as zero trust, microsegmentation and networkdetection and response (NDR), and protect infrastructure from distributed denial ofservice (DDoS) attacks.■ Security Strategy and Architecture:Decide the strategic direction of your technicalsecurity and overcome architectural challenges by using architecture patterns andmethodologies.■ Some content may not be available as part of your current Gartner subscription. Contactan account executive if you wish to discuss expanding your access to Gartner content. Analysis Figure 1. Security Technology and Infrastructure for Technical Professionals Overview Current geopolitical challenges are the backdrop for security risks, both physical andcyber. These risks can emerge as supply chain exposures, and they must be addressedwith a combination of policy and technical controls. Gartner observes a technical upheaval being caused by generative AI (GenAI) capabilities,which are creating risk exposures as they are increasingly used by attackers. However, thesame capabilities can provide opportunities to support overwhelmed and understaffedsecurity teams, as security tools are being enhanced with GenAI capabilities.Organizations need to prepare for this rapid disruption. Cybersecurity vendors continue to consolidate features into broader platforms withoverlapping capabilities. At the same time, customers continue to pursue consolidation ofvendors to simplify operations and reduce “vendor sprawl.” However, compliance andregulatory requirements must still be considered. Capability convergence is a trend affecting multiple security product areas. For example,cloud access security brokers (CASBs), zero trust network access (ZTNA) tools and secureweb gateways (SWGs) are consolidating into security service edge (SSE). Additionally,new converged toolsets are forming, for purposes such as data security posturemanagement (DSPM). Furthermore, many of the larger security vendors are starting to build cybersecurity-mesh-aligned tools and secure access service edge (SASE) capabilities. These will enableorganizations to minimize orchestration efforts with common sets of technical securitypolicies, and take advantage of capabilities like machine learning to identify complexattacks. Security vendors are implementing GenAI capabilities to augment manualsecurity processes for incident response by analyzing datasets. They are also aggregatingcloud traffic to train AI models. The security technology and infrastructure for technical professionals initiative will helpyou manage this complexity by providing guidance for 2024. It will offer effectivepractices for application, cloud, data, endpoint, network and infrastructure security.Ensuring that appropriate security is deployed in your organization is key to keeping itprotected from the growing number of advanced attacks. Topics Gartner’s insights help security technical professionals expand their current securitypractices, architecture and tools to protect their assets. Our research in this area addresses the following topics: Application Security Automated software supply chains, microservices architecture design patterns and cloudplatform adoption can help organizations achieve their product delivery objectives faster,but they also increase complexity and potential ri