New security frontiers: An opportunity to rewrite the rules

Issue 2 2021 Information Security

The Coronavirus business conversation so far has largely been about how to overcome the challenges the pandemic throws up. However, tackling the opportunities, Paul Crichard, chief security technology strategist, BT, explores how organisations can reimagine their security for the cloud, turning it into an enabler for better ways of operating.

Many organisations are seeing the pandemic as an opportunity to throw out the old rulebook. When organisations had to respond quickly to the changing context, they had to bypass some established practices to do things differently and it’s opened their eyes to new possibilities. In fact, I believe we’re never going to work in the same way again and I’m picking up a vibe from customers that says: “We didn’t really like what we were doing before, but it was what we were expected to do. Now we have a chance to make a better working environment, so how do we do more?”

Make security an enabler in this new environment

There’s no doubt that the security environment has changed as the way we work adapts to the restrictions of the pandemic. There’s been a big increase in spending on remote access, and a shift from VPN-based options to direct connections to cloud-based applications to allow people to work at home. Organisations are supporting a greater use of laptops and looking for effective ways to deal with new identity management challenges, such as remote resets. Plus, organisations are generally adopting new technologies faster than usual, bringing new security challenges.

As users demand a better experience and want to work differently, I see a future emerging where IT is more human centric and accessible, and security needs to keep pace. Now there’s a real risk that organisations who stick to the old ways of doing things could overspend on security. It’s time to move away from providing security measures just because they’re expected. In a cloud-based world, it’s about making security an enabler, rather than a blocker. And, by investing in the right areas, organisations can make sure security doesn’t become a money pit.

Security that flexes with the business

Organisations operating successfully in the cloud have shifted their understanding of what good looks like. The power of the cloud comes from building a system that’s visible to everybody using it, where all the different functions are aligned so that when one element changes, others flex to meet the new requirements.

By getting the preparation right, organisations can absolutely fly in the cloud. Take, for example, the way the front-end needs to be able to react to an increased load from users. Having a system in place that is designed to react rapidly and securely to bursts in customer needs gives the assurance that scaling will happen automatically, on demand and with minimal to no issues. And security should flex with it too.

With cloud security, knowledge is power

In the cloud, tech choices can’t be taken in isolation; it’s not just about solving one problem. The thought process needs to explore where this technology will fit into the whole, what it will connect to and how. This information will make installation easier and result in a capability that fits seamlessly into the organisation.

Strong cloud security comes from knowledge in three key areas: a sound understanding of how the cloud works, the applications an organisation wants to use and its business plans moving forward. Organisations who have knowledge about all three can build-in effective security faster, more easily and at a lower cost.

This can be hard to do alone though, because the information needed isn’t always readily available. It’s important to work with a reputable ICT and advisory partner who can act as a knowledgeable friend when the organisation is trying to find the easiest way to get something done. This advisory partner can help provide the full picture the organisation needs to make smart decisions so that their move to the cloud can become an opportunity to do more, better and securely.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Want effective Attack Surface Management? Think like an attacker.
Information Security
Effective ASM requires companies to think like attackers, anticipate risks, and act decisively to reduce exposure by knowing their environment, deploying a structured approach, leveraging capable tools, and addressing both internal and external risks.

Read more...
The growing role of hybrid backup
Infrastructure Information Security
As Africa’s digital economy rapidly grows, businesses across the continent are facing the challenge of securing data in an environment characterised by evolving cyberthreats, unreliable connectivity and diverse regulatory frameworks.

Read more...
POPIA non-compliance puts municipalities at risk
Information Security Government and Parastatal (Industry)
Digital responsibility must go beyond POPIA compliance to recognising that privacy and service delivery are fundamentally linked. Despite this, only 51 out of 257 municipalities submitted their mandatory data protection and access to information reports in 2024.

Read more...
Choicejacking bypasses smartphone charging security
News & Events Information Security
Choicejacking is a new cyberthreat that bypasses smartphone charging security defences to confirm, without the victim’s input or consent, that the victim wishes to connect in data-transfer mode.

Read more...
Most wanted malware
News & Events Information Security
Check Point Software Technologies unveiled its Global Threat Index for June 2025, highlighting a surge in new and evolving threats. Eight African countries are among the most targeted as malware leaders AsyncRAT and FakeUpdates expand.

Read more...
Welcome to the new cyber battleground
Information Security
The Iran-Israel conflict is rapidly redefining modern warfare, pushing the boundaries of cyber capabilities and creating a new, borderless digital battlefield. Fortinet’s CISO, Dr Carl Windsor, offers a critical, in-depth analysis of the escalating tactics and global implications in his latest report.

Read more...
African industries may overestimate cyber defences
Information Security
] A significant perception gap exists in security awareness training: 68% of leaders believe training is tailored to roles, yet only a third of employees feel adequately trained. Many organisations only conduct annual or biannual generic training that may not effectively change behaviour.

Read more...
SMARTpod talks to Sophos and Phishield
SMART Security Solutions Technews Publishing Sophos Videos Information Security News & Events
SMARTpod recently spoke with Pieter Nel, Sales Director for SADC at Sophos, and Sarel Lamprecht, MD at Phishield, about ransomware and their new cyber insurance partnership.

Read more...
Cybersecurity and insurance partnership for sub-Saharan Africa
Sophos News & Events Information Security Security Services & Risk Management
Sophos and Phishield Announce first-of-its-kind cybersecurity and insurance partnership for sub-Saharan Africa. The SMARTpod podcast, discussing the deal and the state of ransomware in South Africa and globally, is now also available.

Read more...
Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.