Digital trust is becoming an underlying theme of all digital engagements
IDC predicts that by 2025, 45 per cent of CEOs, fatigued by security spending without predictable ROI, will demand security metrics and results measurement to assess and validate investments made in their Security programs.
The move towards the digital-first era, where digital models are leveraged for better productivity, growth, and financial gains, have caused organizations in the region to take a more strategic approach towards security. Slowly, digital trust is becoming an underlying theme of all digital engagements, and with it, its implications, such as data security, privacy, and sovereignty, risk mitigation, transparency, and even environmental, social, and governance (ESG).
“Asia/Pacific organizations understand the importance of gaining digital trust from consumers and partners. The goal is to digitally transform themselves and create greater confidence in security, safety, privacy, and reliability throughout the business ecosystem,” says Christian Fam, Research Manager for Security and Trust Research, IDC Asia/Pacific. Fam adds, “Asia/Pacific organizations understand that cybersecurity continues to be a key pillar to gaining a competitive advantage in this digital-first world.”
IDC’s Future of Security & Trust top 10 predictions provide guidance to business leaders on how trust can be achieved and maintained as they navigate the changes ahead:
Autonomous SOC: By 2026, 25 per cent of large enterprise organizations will migrate to autonomous security operations centres accessed by distributed teams for faster remediation, incident management, and response.
PbD Privacy Engineer: By 2025, 20 per cent of organizations will employ privacy engineer to operationalize Privacy by Design principles into IT systems, processes, and product development strategy.
Confidential Computing: By 2025, 15 per cent of heavily regulated organizations will adopt Confidential Computing technologies to combine and enrich sensitive data critical to multiparty compute applications while preserving privacy.
Data Sovereignty Controls: By the end of 2025, 40 per cent of major enterprises will mandate data sovereignty controls from their cloud service providers to adhere to data protection and privacy regulatory requirements.
CaaS: By 2026, driven by steep regulatory growth, talent gap and cost efficiencies measures, 25 per cent of organizations will invest in compliance-as-a-service offerings to meet their regulatory mandates.
Continuous Risk Assessment: By 2027, 45 per cent of Asia-based 2000 companies will adopt continuous risk assessments over annual security audits, leveraging service providers to limit the burden of policies, practices, and technical debt.
Cyber Risk Scoring: By 2025, the SEC will publish the standards for cyber risk scoring, and publicly traded companies will be required to update and report this score on an annual basis.
ESG Metrics: By 2025, 20 per cent of organizations will advance their ESG metrics and data management beyond reporting capabilities to generate sustainably driven cost and competitive advantages.
ESG Management Software: By 2026, 45 per cent of large enterprise firms will implement purpose specific ESG data management & reporting software as a response to emerging legislation and increased stakeholder expectations.
CEO Security Metrics: By 2025, 45 per cent of CEOs, fatigued by security spending without predictable ROI, will demand security metrics and results measurement to assess and validate investments made in their Security programs.