Page 61 - Cyber Defense eMagazine Annual RSA Edition for 2024
P. 61

Redefining these tenets will not only take us a step closer to a more balanced digital matrix but will
            eventually bridge the gap between cybersecurity and digital trust and solidify the acceptance of cyber
            insurance.

            This article discusses the need to redefine cybersecurity and explains why adding a “Trust” tenet to the
            conventional CIA triad will make a lot of difference in cybersecurity and security posture management as
            we know it today.




            What is Cybersecurity and the key tenets of the CIA – Confidentiality, Integrity, and Availability?

            In  a  world  where  data  security  is  top  priority,  cybersecurity  is  a  very  important  subject  matter.  For
            decades, we have been taught that cybersecurity consists mainly of three Tenets called the “CIA Triad”
            - which upholds the following pillars: Confidentiality, Integrity, and Availability.

            Confidentiality means that data is kept private and only accessible to those who are authorized to view
            it. Integrity focuses on accuracy of data and making sure data has not been tampered with. On the other
            hand, availability means that data is available and accessible when needed. These three pillars make up
            the conventional principles or “tenets” of modern cybersecurity.

            When it was defined, it did fit the definition and purpose. At the time, we were mainly concerned with
            “information  systems,  data,  and  services”.  However,  the  need  and  demand  for  cybersecurity  has
            increased as technology evolves. While the CIA triad is important, it is not enough. In today's world where
            we share and exchange data constantly, there’s a need to add a new tenet to the mix - specifically, trust.

            But why do we need to redefine cybersecurity from a trust perspective?



            Why there is a Need to Redefine Cybersecurity


            The need to redefine cybersecurity cannot be overemphasized. Cybersecurity is no longer just a concern
            for IT departments. In today's world with increasing digital transformations, we are living in an entirely
            new era. The “Digital Era” as we call it is fuelled by smart devices, AI, cloud and mobile devices.

            Evidently, our lives are dependent on technology, and in some cases, this makes us incapable of even
            performing primary tasks as humans. The situation? Over reliance on technology! This situation has
            worsened with increasing technological advancements. The result? Every organization, regardless of
            size or industry, is at risk of cyberattack. This is no news. It is already happening.

            There are a number of reasons why there is a need to redefine cybersecurity. First, the threat landscape
            is constantly evolving. Cybercriminals are constantly developing new ways to exploit vulnerabilities in
            systems and software.


            Second, the digital world is becoming increasingly interconnected. The rise of cloud computing, mobile
            devices, and the Internet of Things has made it easier for criminals to gain access to sensitive data. Third,








                                                                                                              61
   56   57   58   59   60   61   62   63   64   65   66