Cyber security Predictions from Zoom CISO Jason Lee for 2022
As hybrid workforce becomes the new normal in 2022, here are some of the cyber security insights from Jason Lee, Zoom's CISO.
As hybrid workforce becomes the new normal in 2022 and more so, a long-term strategy for businesses, the Zero trust approach will become even more attractive for security leaders, as it provides continuous checks as to whether employees need access at that time to sensitive data. Also, as the cyber security talent pool grows, more professionals will choose to enter the field due to increased demand and in many cases, the ability to work from anywhere. These are the insights from Jason Lee, Zoom’s Chief Information Security Officer (CISO) who has over two decades of experience in technology, and specializes in information security and operating mission-critical services.
Here are the four security trends Lee anticipates for 2022:
#1. To adapt to hybrid working environments, more companies will drive to adopt the Zero Trust security model. Conversations around protecting the hybrid workforce from risk will lead security professionals to adopt modern tools and technologies, like multi-factor authentication and the Zero Trust approach to security. I believe that companies need these tools to make sure their employees can get work done as safely as possible from wherever they are — commuting, traveling, or working from home — and that all of their endpoints are secured with continual checks in place.
#2. Security leaders will step up their protections against third-party risks. In security, you always need to be thinking ahead about what might come down the pipeline. From SolarWinds in December 2020, to Colonial Pipeline and Kaseya in 2021, our industry saw a distinct increase in supply chain attacks. CISOs and CIOs will need to make sure their vendors are also secure. This includes looking at third parties related to the business and assessing how to best manage any risks.
#3. More public technology companies will create dedicated cyber security committees on their boards of directors. One of the most impactful things we did at Zoom this past year was to institute a three-person committee on our board dedicated to cyber security matters. Having security industry experience at this level is incredibly valuable, allowing us to readily address concerns and issues in industry shorthand. While this approach is still relatively new, it has been incredibly beneficial and I wish we did it sooner. And I’ve heard peers express strong interest in recreating this approach at their own companies, which leads me to expect this will be a priority for organizations in the New Year.
#4. The security hiring boom will continue. We know that cyber security professionals are a hot commodity across industries, due to more available jobs than trained applicants. In fact, the U.S. Bureau of Labor Statistics reported that employment for information security analysts is projected to grow 33% from 2020-2030. At Zoom, we expect to continue to hire highly-qualified security professionals throughout 2022. I believe we’ll see the cyber security talent pool grow as more professionals choose to enter the field due to increased demand and in many cases, the ability to work from anywhere.