Cybersecurity leaders are grappling with the complexity, overlap and blind spots that come from utilizing a number of cybersecurity distributors and instruments. Lots of the merchandise supplied by cybersecurity distributors have overlapping capabilities, making it straightforward for misconfigurations to happen and tough to uncover safety gaps. Consolidating cybersecurity merchandise reduces this complexity by streamlining the variety of merchandise and their interactions, thus enhancing effectivity of safety outcomes.
Organizations consolidate safety options for quite a lot of causes, similar to decrease whole price of possession by means of higher effectivity, improved safety posture by means of higher integration and controls protection, or ease of procurement. Organizations are inclined to consolidate the place they’ll afford to remove best-of-breed performance with out vital drops in efficacy.
Cybersecurity leaders can use the next three methods to realize cybersecurity platform consolidation.
1. Establish desired safety outcomes
Speaking the target is as vital as executing the consolidation train. Typically, CIOs and different enterprise and know-how leaders will affiliate a consolidation challenge with funds discount. Whereas discount of whole price of possession could show to be a welcome byproduct of this train, most CIOs count on the funds to develop for cybersecurity.
Cybersecurity leaders should as an alternative consolidate to simplify. Safe entry by means of a safe entry service edge or improved detection throughout siloed applied sciences utilizing prolonged detection and response are two of the primary consolidation initiatives.
2. Assess distributors and instruments
Cybersecurity leaders ought to assess the merchandise they’re at present utilizing and components such because the performance they provide, the contract length, present spending and energy to keep up. Then, they need to establish the elements and capabilities which can be vital of their group. Cybersecurity leaders also needs to assess various choices for particular capabilities — some at present unused merchandise could already be accessible with their present licensing schemes.
SEE: Gartner Warns IAM Professionals Cyber Safety Relies on Them
It’s key to gather outcomes from all doable areas and stakeholders. As cybersecurity leaders assess merchandise, they might disregard vital capabilities that aren’t instantly seen. A specific product would possibly supply, for instance, a person or administrator administration expertise or set of present capabilities that could be arduous to switch; it might supply a service the place the person can contact the seller’s resident specialists to acquire steerage on particular subjects. As soon as extra, consolidation just isn’t completely a price financial savings train — the evaluation train ought to seize these subtleties.
One factor specifically to guage is how tough it’s to take away a product or how straightforward it’s to combine. Oftentimes, profitable proofs of idea with a single cloud occasion for a product that’s promising however tough to deploy result in that product by no means being deployed extra extensively. Within the subsequent renewal, it’s dropped due to its restricted utilization.
3. Analyze outcomes and establish initiatives
As soon as present and potential cybersecurity instruments and distributors have been recognized, their outcomes may be analyzed. Cybersecurity leaders ought to establish must-have merchandise, which can be merchandise that include distinctive options or that will be problematic to take away.
Cybersecurity leaders also needs to establish which capabilities they’ve a number of merchandise in place for. There could also be merchandise from strategic distributors in place that may be added or maintained, and ones that may be eliminated. These kind of concerns will help establish probably the most possible initiatives to conduct first and execute on them.
Consolidation shall be simpler in additional mature know-how areas. And whereas the business could also be prepared for consolidation, not each group shall be at that stage of maturity. Organizations sometimes consolidate as soon as they’ve a number of stand-alone elements that may be consolidated in a platform in place, relatively than including model new functionalities as a part of a platform.
As soon as cybersecurity leaders have recognized and begun a consolidation challenge, they need to needless to say consolidation just isn’t a finite train. Potential subsequent consolidation initiatives and their compatibility needs to be accounted for. Cybersecurity leaders can then ensure the elements they’re changing have stand-alone merchandise that may interoperate — for instance, by exposing software programming interfaces — with different merchandise and distributors sooner or later.
Dionisio Zumerle is a VP Analyst at Gartner the place he covers software and cell safety, in addition to rising know-how areas, similar to software safety posture administration and the consolidation of cybersecurity platforms.
