Guy Golan, CEO, Performanta
Which cybersecurity start-up or emerging vendor are you tipping for take-off in 2023, and why?
I am a little biased (but who isn't when providing an opinion). EncoreASM.com [Performanta's own security platform] is definitely an emerging vendor. The ASM (attack surface management) market is crucial to achieve a safe state. In the UK the ASM market is just starting while in the US it is in full force. What EncoreASM does so well is the ability to connect external attack surface with the internal preparedness of their security controls (EASM and CAASM). This approach is revolutionary. As an MSSP we have discovered that the time to remediate dropped immensely (over 75 per cent). The visibility is absolutely crucial to make the right decisions and the ability to generate reports in minutes (as opposed to 40 hours per client before) make a huge difference in clients' safety and clients' protection.
More broadly, what cyber technology, service or approach are you expecting more of your customers to adopt in 2023?
As per the point above, I truly believe a combined ASM (EASM and CAASM) are the areas where clients will adopt in 2023. Think about it this way: a CISO without a combined ASM can only guess what their state of security controls (which is the layer of defence they need) really looks like. The reporting is always in a hindsight. And the execs look at information that is too technical rather than valuable and insightful. The combined ASM with proper enablement of the client will make their life much easier in protecting their environment and better communication with the board.
How do you expect the threat landscape to evolve in 2023?
Just like water, the threat landscape always looks for the easier path to take. Right now it is all about ransomware. We see the usual uptick in ransomware but at the same time we see a change in the nature of the ransomware. While the traditional way is to encrypt the data and ask for money; the new approach copies the data and gives the client, or anyone else the chance to buy the data at a said amount. Some attackers give the ransomed client first option and some just open it to the highest bidder. This type if action brings massive topic to the front - the value of data.
As such, I believe elements of data security (where leakages and breaches hurt the most) and identity and access management will become high on clients' agenda.